Want to protect your identity?

See if your passwords have been leaked on the dark web by activating ClearScore Protect for free now.

Discover ClearScore Protect

EasyJet data breach: what should you do?

EasyJet has announced a data breach affecting 9 million customers. Here’s what to do if you think you’ve been affected.

Image by Frederick Tubiermont on Unsplash

Want to protect your identity?

See if your passwords have been leaked on the dark web by activating ClearScore Protect for free now.

Discover ClearScore Protect

EasyJet has announced that hackers have accessed the email and travel details of around nine million customers, as well as the credit card details of more than 2,000 customers.

They’ve said they will contact anyone who has been affected in the next couple of days, and that there is "no evidence" that the personal information has been misused.

How to tell if your data has been leaked

If you’re one of the 2,208 customers who have had their credit card details stolen, EasyJet will already have contacted you.

For everyone else, EasyJet will let you know in the next few days (and no later than 26 May) if you’ve been affected. In the meantime, there are steps you can take to protect yourself against fraudsters.

What you can do now

1. If your credit card details have been stolen, cancel your card

If your credit card details have been stolen, you’ll need to contact your credit card provider to explain what’s happened. They’ll cancel your card and issue you a new one (they may have already done this). Normally you’ll be reimbursed for any charges you weren’t responsible for if you report fraud quickly.

You can also report it to ActionFraud.

2. Change your passwords

EasyJet haven’t said that any passwords were stolen in the breach. However, it’s worth changing the password for your EasyJet account.

If like many people, you’ve used your EasyJet password for lots of sites, it’s a good idea to change it for your other accounts too. Watch our guide for the best technique for doing this.

3. Check your bank statements

Check your bank statements and make sure you recognise everything on there. If you see anything suspicious, contact your bank or lender straight away.

This also applies if you start to receive bank statements in the post or new credit cards that you weren’t expecting - it could be a sign someone has opened an account in your name.

4. Check your credit report

Check your credit report for any searches or accounts you don’t recognise (read about how to do this).

If someone is trying to take out credit in your name, a hard credit search will appear on your credit report.

If you spot a credit search you don’t recognise, check with the named lender first then report it as quickly as possible to Action Fraud.

Look for signs of fraud: check your searches in your ClearScore account.

5. Be wary of unsolicited emails, texts and calls

After a large-scale data breach, you should be particularly wary of unsolicited emails and messages. It’s likely that fraudsters will pose as EasyJet or your bank and claim to be dealing with the breach, but they are simply trying to steal personal details themselves.

Stay alert: find out how to spot scams.

6. Use a dark web monitoring service

With large-scale company data breaches becoming more common, it’s more important than ever to protect your information.

ClearScore Protect is a free dark web monitoring service that tells you if your data has been involved in a breach. Every three months, we’ll scan the dark web to see if your passwords have been stolen, so you can change your passwords and protect yourself.

If you’re looking for even more peace of mind, you can subscribe to daily dark web scans with ClearScore Protect Realtime. You’ll get a more comprehensive dark web scan where we search for more of your information, and you’ll also get access to dedicated fraud support.


Lucy has a wealth of personal finance knowledge, and is one of our in-house experts.