// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Dublin Airport
Breach Record

Dublin Airport

DISCLOSED 2023-07-04 · UNPATCHED CVE

Personal data of Dublin Airport staff was exposed due to a MOVEit attack on professional services provider Aon. The breach is linked to the Cl0p ransomware group's exploitation of a vulnerability in the MOVEit Transfer software. The exact number of affected individuals and the breach date were not disclosed.

The record

What we know

Disclosed
2023-07-04
Attack vector
Unpatched Cve
Sector
Aviation
Country
Ireland
Data classes exposed
personal data
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The attack exploited a vulnerability in the MOVEit Transfer software, which is a server-side application. A positive-security model on endpoints would not have prevented this server-side exploitation.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other unpatched cve breaches on file

This page is the permanent ColdRecon entry for the Dublin Airport disclosure. It updates if new public reporting emerges. All tracked breaches →

Dublin Airport just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →