Spanish airline Iberia has suffered a significant data breach due to a cyberattack on one of its suppliers, exposing 77GB of customer information. This incident underscores the growing risks within the supply chain, as vulnerabilities in third-party vendors can circumvent core system protections and standard audits.
IT leaders, particularly those in managed services, are urged to strengthen supplier assessments, implement robust incident response plans, and practise data minimisation. Compliance remains crucial, as GDPR and similar regulations hold organisations responsible for their vendors’ actions. The breach serves as a strong reminder: vendor management must be a key security priority to mitigate reputational and financial risks.
Iberia Data Breach: Why Supply Chain Security Must Be a Top Priority
