By Bridge IT account manager, Jessica Thompson
Jess joined the Bridge in 2017, placing permanent and contract candidates into a variety of roles. As an account manager Jess enjoys the customer service focus in recruitment. Jess studied Graphic Design and Illustration at Leeds Arts University. Connect on LinkedIn
As the travel industry reels from the devasting impact of Covid-19, there was further concern for EasyJet as this week as the company admitted that a highly sophisticated cyber attack has affected over nine million of its customers.
In the breach, email addresses and travel details were stolen in addition to 2,208 customers who had also had their credit and debit card details "accessed". The stolen credit card data included the three digital security code - known as the CVV number.
Despite the attack taking place in January, EasyJet were only able to notify customers whose credit card details were stolen in early April. The travel company has gone public this week in order to warn the nine million customers whose email addresses had been stolen to be wary of phishing attacks.
The airline told the BBC:
"This was a highly sophisticated attacker. It took time to understand the scope of the attack and to identify who had been impacted. We could only inform people once the investigation had progressed enough that we were able to identify whether any individuals have been affected, then who had been impacted and what information had been accessed."
The coronavirus pandemic has meant an end to much global travel, leaving airlines struggling financially. These are already turbulent times for all companies within the aviation industry, but the situation has significantly worsened for EasyJet. Under GDPR (General Data Protection Regulation), if EasyJet is found to have mishandled customer data, it could face fines of up to 4% of its annual worldwide turnover.
Consumers have a right to expect that organisations will handle their personal information securely and responsibly. Now more than ever, with so many transactions and processes taking place online, internet security is top of the agenda for many businesses.
Whilst recruitment slows in many sectors, here at The Bridge and across the industry, we’ve seen many companies still heavily recruiting within the cyber security space and this latest hack perfectly highlights why there is still high demand for technical security professionals. For example, I’m working with a number of clients who are actively recruiting security roles, especially within infrastructure and cloud security.
Another factor in the demand for cyber talent is the move to more home working, as working from home requires ever greater vigilance in the use of technology. As we continue to conduct our business remotely there are many areas of cyber that this seismic shift could significantly benefit including SASE, Security Awareness, Mobile, Home Security Architecture, Sec Ops. Phishing and IOT.
If you’re an individual looking for an opportunity in the cyber security industry or an organisation looking for technical security professionals, we’re here to help.
Contact me at Jessica.firstname.lastname@example.org for more information and a confidential chat.