Hackers claim breach of Anuvu systems, exposing Starlink customer data

Anuvu, a major provider of in-flight entertainment and connectivity services, has allegedly been targeted in a cyberattack that exposed sensitive company and customer data, including information about its use of Starlink services.

The attack was announced on a well-known data leak forum where cybercriminals trade stolen information. The post claimed that the breach yielded admin-level credentials granting access to Anuvu’s Amazon Web Services and Postgres databases. The exposed information allegedly includes names, email addresses, password hashes, physical addresses, and other sensitive data linked to both employees and customers. Many of the credentials appear to date from 2024.

Cybernews researchers, who analyzed the samples attached to the forum post, said the leaked data appears authentic. Screenshots shared by the attackers reportedly reveal details of Anuvu’s maritime customers, including company names, Salesforce identifiers, and business categories. Other files appear to list Anuvu managers, their contact details, and Starlink contract records showing which customers used Starlink services via Anuvu.

Researchers warned that the most immediate risk comes from user credentials, which could be reused in targeted phishing campaigns or credential stuffing attacks. These tactics exploit the widespread problem of password reuse, allowing attackers to attempt logins across multiple services with stolen combinations.

“Logins are probably used for a customer-facing dashboard of some sort, since there is a mix of employee and customer logins here. Some physical addresses match office locations. People mentioned here seem legit as well,” the Cybernews team noted.

Anuvu, formerly known as Global Eagle until 2021, works with more than 150 airlines and 30 cruise-line operators worldwide. Its partners include major carriers such as Air France, Delta, Southwest, and British Airways. The company generates an estimated $370 million in annual revenue and employs roughly 1,000 people globally.