Los Angeles International Airport (LAX) has fallen victim to a cyberattack, resulting in the exposure of a database containing 2.5 million records, as reported by Hackread. The breach occurred this month when IntelBroker targeted one of LAX’s customer relationship management (CRM) systems.
IntelBroker, the threat actor behind the attack, disclosed its focus on the vulnerable CRM system to access the database, which included sensitive information such as full names, CPA numbers, company names, plane model numbers, and aircraft tail numbers. Additionally, approximately 1.9 million emails were compromised. Fortunately, the incident did not affect customer and traveler information.
Contrary to initial attribution to “kwillsy” in a posting on BreachForums, IntelBroker has claimed responsibility for the intrusion. This revelation follows previous actions by the threat actor, including compromising entities like Robert Half, General Electric, and Weee!, as well as exposing a segment of the Facebook Marketplace database.