Latest News

Travel Firm ABTA Hit By Cyber Attack

The travel trade organisation, Abta, says a cyber attack on its website may have affected about 43,000 people.

About 1,000 files accessed may include personal identity information of individuals who have made a complaint about an Abta-registered travel agent.

It says it is contacting those affected by the hack which happened on 27 February and has a dedicated helpline.

It has also alerted the police and the Information Commissioner’s Office (ICO).

Part of the ICO’s role is to help the public manage their personal data.

Abta chief executive Mark Tanzer said he would “personally like to apologise for the anxiety and concern” caused to Abta customers and members.

“It is extremely disappointing that our web server, managed for Abta through a third party web developer and hosting company, was compromised and we are taking every step we can to help those affected.”

Mr Tanzer said the organisation was not aware of any of the information being shared beyond the infiltrator.

ABTA is the UK’s largest travel association, representing travel agents and tour operators who sell £32bn of holidays and other travel arrangements each year, according to its website.

The organisation gives advice and guidance to holidaymakers, sets standards for travel firms and promotes responsible tourism in the UK and abroad.

It said the type of data which may have been accessed included:

  • Email addresses and encrypted passwords of Abta customers and members registered on the website
  • Contact details of customers of Abta members who have used the website to register a complaint
  • Data uploaded to support a complaint made about an Abta member since 11 January 2017
  • Data uploaded by Abta members in support of their membership

Abta said the “vast majority” of the 43,000 people affected were those who had registered with email addresses and encrypted passwords or had filled in an online form with basic contact details.

It said there was “a very low exposure risk to identity theft or online fraud” with this kind of data.

It advised customers and ABTA members registered on the site to change their passwords as a “precautionary measure”.

Abta said those who had uploaded contact details or documentation on the website should actively monitor their bank accounts, social media and email accounts, and “remain vigilant”.

It has also offered people who may be affected a free-of-charge identity theft protection service.

For more information about our work, please visit

Cyber Aware is a cross-government campaign, funded by the National Cyber Security Programme. They aim to measurably and significantly improve the online safety behaviour and confidence of consumers and small businesses (SMEs).

Get Safe Online is the UK’s leading source of factual and easy-to-understand information on online safety. Their website offers advice on how you can protect yourself, your computers and devices, and your business against the likes of fraud, identity theft, viruses and other potential online problems.

%d bloggers like this: