On Tuesday afternoon, an overload attack led to major disruptions for SAS customers. The company’s site and app were down for several hours, while customer data ended up in the wrong hands.
– There were some customers who obtained other customers’ information, such as contact details, upcoming trips and the last four digits of the credit card number, says Anna Sandell, press manager for SAS Sweden.
She emphasizes that no data should have been stolen and that there are no signs of a breach in the systems.
– No one has stolen information, but it is SAS passengers who used the app and the website who may have been able to see other people’s information.
Hacker group once again claims responsibility
On Wednesday, attacks were directed at Skellefteå airport. But according to the airport management, air traffic was not affected – only the information for travelers.
In both cases, the attacks have been announced in advance. The hacker group Anonymous Sudan, which claims to have connections to Sudan in particular, has stated that Swedish sites will be subjected to cyber attacks until the Swedish government apologizes for Rasmus Paludan’s Koran burnings.
A further handful of airports were singled out as targets for the attacks, but it is unclear if more were affected by disruptions.
Several waves of attacks
In the past, several regions and media companies have been exposed by the group.
Several IT experts that SVT Nyheter spoke to have emphasized that the allegedly Sudanese hacker group could be a false flag operation that is in fact orchestrated by Russia. On its Telegram channel, the group has refuted the Russian connection and called the experts “idiots”.