Ragnar Locker ransomware claims attack on TAP Air Portugal

On the night of Thursday 25th of August, TAP Air Portugal, the flag carrier of Portugal, disclosed that their systems were hit by a cyber attack which resulted in their website and app being unavailable. The company stated that the attack had been blocked and added that it found no evidence indicating the attackers gained access to customer information stored on impacted servers.

“TAP was the target of a cyber-attack, now blocked. Operational integrity is guaranteed. No facts have been found that allow us to conclude that there has been improper access to customer data. The website and app still have some instability.” – TAP Air Portugal Tweet about the incident.

Although the incident resulted in their website and app being unavailable, TAP Air Portugal has stated that customers could book flights, manage previously made bookings, and check in and download their boarding passes without logging in.

TAP Air Portugal hasn’t provided any further information on the incident yet but the Ragnar Locker ransomware gang has claimed responsibility for the attack via a new posting on their data leak website. Even though TAP Air Portugal has stated that no evidence has been found to prove that its customers’ data was accessed during the incident, the ransomware group has stated that they have evidence to disprove TAP Air Portugal’s statement.