WestJet Airlines has confirmed that 1.2 million passengers were affected by a significant data breach that occurred in June. While the Calgary-based airline initially issued a warning to U.S. customers earlier this week, the full scope of the breach was only revealed in a regulatory filing with the Maine Attorney General’s office.
The compromised data includes a broad range of personal information:
- Full names
- Contact information (email addresses, phone numbers, physical addresses)
- Travel-related documentation, possibly including passport details
- WestJet Rewards account details, including earned points
Although WestJet’s public statement didn’t clarify the total number of individuals impacted, the Maine filing confirmed the 1.2 million figure. Out of these, 240 customers resided in the state of Maine, prompting a formal breach disclosure under U.S. regulations.
Table of Contents
Hacking Group “Scattered Spider” Suspected of Orchestrating the Attack
Who is Scattered Spider?
Cybersecurity analysts believe that the breach may have been carried out by a notorious hacking group known as Scattered Spider. This collective is reportedly composed of teenagers and young adults, known for employing social engineering tactics—manipulating IT personnel into granting unauthorized access to internal systems.
Scattered Spider has been linked to several high-profile attacks across North America, often targeting large enterprises with vulnerable digital infrastructures.
Method of Attack: Social Engineering and Insider Exploits
Although WestJet hasn’t disclosed exactly how the breach occurred, sources familiar with the group suggest that attackers often impersonate employees or IT staff to bypass security protocols. These kinds of attacks are becoming increasingly common, especially in sectors like travel and finance where sensitive personal data is routinely collected and stored.
Investigation Underway by Canadian Privacy Watchdog
The Office of the Privacy Commissioner of Canada has launched an official investigation into the breach. WestJet has stated that it is cooperating fully with both Canadian and U.S. law enforcement agencies and is taking steps to mitigate further risks.
Affected passengers are reportedly being contacted directly. WestJet has also urged customers to monitor their accounts for suspicious activity and to consider changing passwords or enabling two-factor authentication where applicable.
What WestJet Customers Should Do Now
If you’re a WestJet passenger, especially one who traveled in or before June, you may want to:
- Check your email for any official communication from WestJet
- Monitor your WestJet Rewards account for unusual activity
- Review your travel documents and personal accounts for any signs of misuse
- Be cautious of phishing attempts that use your leaked information
It’s also a good idea to check with your bank or credit card provider if you used those details with WestJet during the affected period.
WestJet Introduces New Tech Features Amid Cybersecurity Fallout
Despite the ongoing investigation, WestJet continues to roll out new technology features. The airline recently announced expanded in-flight Wi-Fi access in partnership with Starlink and Telus, promising faster and more reliable connections on more aircraft.
Additionally, passengers can now use Apple AirTags to track their checked baggage, enhancing transparency and reducing the frustration of lost luggage.
Final Thoughts
While the data breach is a serious issue that could have long-term consequences for affected customers, WestJet’s swift acknowledgment and cooperation with authorities may help limit the damage. Still, the breach serves as a stark reminder of how vulnerable even major companies can be in the age of digital threats.