Korean Air is a organization tracked across 2 threat clusters and 2 intelligence report mentions on ThreatCluster. First observed December 30, 2025; most recent activity December 31, 2025.
Korean Air is South Korea's flag carrier and largest airline. In cybersecurity terms, it has recently suffered data exposure—user/employee PII leaked by the Cl0p extortion group—and is also listed as a victim in an Oracle E-Business Suite (ERP) breach, underscoring multi-vector risk to its IT/ERP environments and sensitive employee data.
The University of Phoenix experienced a data breach affecting 3.5 million individuals, attributed to the Clop ransomware group exploiting a zero-day vulnerability in Oracle's enterprise software. The attackers accessed…
Korean Air has confirmed a significant data breach affecting the personal records of 30,000 employees. The Cl0p ransomware group targeted a catering partner, leading to the unauthorized leak of sensitive data. The…