- Collins Aerospace has suffered a data breach
- This breach may affect passengers at Dublin and Cork airports
- Any affected person may be at risk of identity theft or fraud.
A key supplier to Dublin and Cork airports has confirmed that it suffered a data breach, said to involve the passenger data of potentially millions of people who flew through the airports in August 2025.
DAA, the managing authority of the two travel centers, told the Irish times A data security incident involving third-party vendor Collins Aerospace had resulted in boarding pass information being posted online by a “cybercriminal group.”
While the DAA has assured passengers that they do not need to take any immediate action, if personal information is exposed, this could expose them to the risk of identity theft or fraud, so they should closely monitor their accounts for any suspicious activity.
Ongoing investigation
Swedish airline SAS distributed an email warning passengers who flew to Dublin or Cork in August 2025 that their information could be affected;
“The affected files included your booking reference, first name, last name and frequent flyer number. Based on this information, other details related to your booking may have been accessed, such as contact information and travel itinerary. This information may have been leaked to the public by an unauthorized party.”
So far, there is no evidence of any direct impact on the DAA systems themselves and there do not appear to be any disruptions to flights or bookings.
There have been a number of high-profile cybersecurity incidents in recent months, the vast majority of which originated through the initial breach by third-party contractors.
Recent research suggests that a third of all cyberattacks now involve third-party vendors or external platforms, highlighting the challenges security teams face in ensuring the security of not only their own systems, but also those of their partners.
The best identity theft protection for every budget
