Hackers gained access to personal data for a “very small number” of American Airlines Group customers and employees through a phishing scam that affected some employee email accounts, the airline said Tuesday.
American discovered the breach in July, according to a Sept. 16 notification letter shared with state regulators in Montana. The airline said in a written statement that it has no evidence that any personal data had been misused.
