Ransomware victim disclosure
← All victimsEgyptAir
listed as egyptair.com 5 with 10K ! · Claimed by Funksec · listed 2 years ago
Status timeline
- ListedDec 23, 2024
- Data leakeddate unknown
At a glance
- Group
- Funksec
- Status
- Data leaked
- Country
- Egypt
- Sector
- Transportation/Logistics
- Listed on leak site
- Dec 23, 2024
About the victim
AI dossier — public-source company profileEgyptAir is Egypt's national airline, established in 1932 and headquartered in Cairo. It operates scheduled passenger and freight services to over 70 destinations across the Middle East, Europe, Africa, Asia, and the Americas, and is a member of the Star Alliance.
- Industry
- Airlines & Air Transportation
- Address
- Cairo, Egypt
- Founded
- 1932
Attack summary
Severity: high — EgyptAir is critical national infrastructure (airline operator) with potential access to passenger PII, operational/flight data, and financial records. Confirmed data published by ransomware group targeting a major international airline warrants high severity despite limited proof details in the excerpt.The ransomware group claims to have compromised EgyptAir and advertises the breach with a reference to '5 with 10K', suggesting exfiltration of data. No specific details on data type or operational disruption are provided in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- company systems/databases
Original description
AI-summarised, not from the leak postCertainly! EgyptAir is the national airline of Egypt, headquartered in Cairo. Established in 1932, it operates scheduled passenger and freight services to over 70 destinations in the Middle East, Europe, Africa, Asia, and the Americas. As a member of the Star Alliance, EgyptAir offers a range of services and amenities, including in-flight entertainment and a frequent flyer program. The airline prioritizes safety and customer satisfaction.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

