Skip to content
Support
Sign In Subscribe
Data Breaches

Threat Actor Claims Air France Vulnerability Exposes 2 Million Customer Records via Admin Panel

 and  Dark Web Informer
14 min read
Dark Web Informer — Cyber Threat Intelligence

Threat Actor Claims Air France Vulnerability Exposes 2 Million Customer Records via Admin Panel

February 6, 2026 — 4:59:51 AM UTC FR France Airlines & Aviation
🧩
Standalone API Access Now Available High-volume threat-intelligence data, automated ingestion endpoints, ransomware feeds, IOC data, and more.
View API

Quick Facts

Date & Time
2026-02-06 04:59:51 UTC
Threat Actor
GordonFreeman
Victim Country
FRFrance
Industry
Airlines & Aviation
Victim Organization
Air France
Victim Site
airfrance.com
Category
Data Breach
Severity
🟡 Medium
Network
Open Web

Victim Profile

Air France

Major international airline and flag carrier of France
Organization
Air France
Sector Type
Private
Industry
Airlines & Aviation
Country
FRFrance
Domain
airfrance.com
Claimed Records
~2 Million
Description
Air France is a major international airline and the flag carrier of France, headquartered in Tremblay-en-France. Part of the Air France–KLM group, it is one of the founding members of the SkyTeam global airline alliance. The company operates the Flying Blue frequent flyer program, which is referenced in the exposed data samples.

Incident Overview

A threat actor using the handle "GordonFreeman" has posted a listing claiming to sell access to a vulnerability in Air France's systems, along with a data extraction method. The listing states that the vulnerability provides access to an admin panel through which over 2 million user purchase records can be obtained.

This post is for subscribers on the Plus, Pro and Elite tiers

Subscribe

Already have an account? Sign In

Related

Latest