1,042 Airclaim customers affected by a claimed data leak
On 8 March 2026, a threat actor put a 121 GB database from flight-compensation platform Airclaim up for sale on a hacker forum, claiming 55,867 affected passengers — including 1,042 French nationals — with scanned passports, signatures and boarding passes exposed.
- Victim
- Airclaim
- records
- 55.9K
On 8 March 2026, Airclaim — an EU flight-compensation platform that helps air passengers claim refunds for delayed and cancelled flights — was named in a breach listing after a threat actor advertised a 121 GB database of its customers for sale on a major hacker forum. The actor claimed exclusivity, offering the dump to a single buyer to preserve its resale value.
The seller put the number of affected passengers at 55,867, drawn mainly from Romania (about 22,651), Spain (about 5,836) and Italy (about 5,190); roughly 1,042 of the records belonged to French nationals. Because Airclaim's service requires customers to upload identity and travel documents to substantiate a claim, the exposed set is unusually rich for identity fraud.
The data on offer reportedly includes:
- Scanned passports and handwritten signatures
- Scanned boarding passes, flight numbers, dates and booking references
- Full names, home addresses, phone numbers and email addresses
- Full claim narratives and flight/airline details
Analysts described the combination as a ready-made "document kit" suitable for KYC bypass at financial institutions and for hyper-targeted phishing built around victims' real flight histories. As of disclosure the listing was active and the claim had not been publicly confirmed by Airclaim; the breach therefore remains unverified and ongoing.
Sources
- fuitesinfos.frhttps://fuitesinfos.fr/article/2026-03-08-airclaim
- frenchbreaches.comhttps://frenchbreaches.com/blog/airclaim-un-hacker-revendique-la-fuite-de-55-000-passeports-et-documents-de-passagers
- brinztech.comhttps://www.brinztech.com/breach-alerts/brinztech-alert-alleged-database-of-airclaim-com-on-sale/