Stormous Hacking Group Claimed Breaching the Wizz Air Abu Dhabi Branch

• Wizz Air was reportedly targeted by the Stormous hackers, who claimed to exfiltrate sensitive data.
• Company, employee, and customer information is said to be included in the stolen data set.
• The aviation company has yet to make any comments regarding this breach allegation.

The notorious Stormous hacking group claimed to have breached Wizz Air Abu Dhabi. The alleged attack reportedly resulted in the exfiltration of approximately 22 GB of sensitive company, employee, and customer data.

Stormous, a hacking collective known for high-profile cyber incursions, announced the breach via its online channels. The group alleges that it accessed and extracted critical and confidential data tied to Wizz Air's Abu Dhabi operations. 

The reportedly stolen files include company reports, operational documents, employee information, client details, internal data, and air operator certificates for all employees and other related parties.

While the post includes some samples that are supposed to serve as proof, these allegations are yet to be substantiated.

Operating as a collective since 2021, the Arabic-speaking group focuses on ransomware attacks and data breaches to exfiltrate critical information, often seeking financial gain or notoriety. Yet, when they leak allegedly stolen data, it is frequently publicly available information.

In March 2024, the hackers took credit for an attack on Belgian brewer Duvel. The ransomware attack on Duvel Moortgat Brewery affected operations for several days, and in 2023, they claimed a Coca-Cola data breach.

The International Civil Aviation Organization (ICAO) said that nearly 12,000 individuals were affected by a data leak that contained recruitment application information submitted between April 2016 and July 2024. The data breach claimed by the Natohub threat actor on January 5.