// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-hibpDTG 0600Z
ColdRecon / Breach Radar / Vietnam Airlines
Breach Record

Vietnam Airlines

DISCLOSED 2025-06-20 · STOLEN CREDS · 7,316,915 RECORDS EXPOSED

In October 2025, data stolen from the Salesforce instances of multiple companies by a hacking group calling itself "Scattered LAPSUS$ Hunters" was publicly released. Among the affected organisations was Vietnam Airlines, which had 7.3M unique customer email addresses exposed following a breach of its Salesforce environment in June of that year. The compromised data also...

The record

What we know

Disclosed
2025-06-20
Attack vector
Stolen Creds
Records exposed
7,316,915
Domain
vietnamairlines.com
Data classes exposed
Dates of birthEmail addressesLoyalty program detailsNamesPhone numbers
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the Vietnam Airlines disclosure. It updates if new public reporting emerges. All tracked breaches →

Vietnam Airlines just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →