The Port of Seattle announced on Thursday, April 3, 2025 that it is notifying approximately 90,000 people that their personal data was compromised in an August 2024 cyberattack that targeted the agency’s previously used systems, including those at Seattle-Tacoma International Airport (SEA) and its maritime operations.

In a statement, Port officials said notification letters are now being mailed to those affected, with about 71,000 individuals residing in Washington state. The breach involved unauthorized access and download of data, including names, dates of birth, Social Security numbers, driver’s license or ID numbers, and in some cases, medical information.

The Port said the affected data pertained primarily to former and current employees, contractors, and parking customers. Passenger payment systems and federal security systems, including those operated by the FAA, TSA, and U.S. Customs and Border Protection, were not affected.

“This incident did not impact the ability to safely travel to or from SEA Airport or use the Port’s maritime facilities,” Port officials stated.

As we previously reported, the breach was discovered Aug. 24, 2024, when IT staff identified system outages consistent with a cyberattack. The Port quickly activated its incident response plan, took systems offline, and engaged cybersecurity experts to investigate and contain the threat. Law enforcement agencies were also notified.

Following the investigation, the Port hardened its systems to prevent future intrusions and is offering free credit monitoring services to affected individuals.

Those receiving mailed notices will find instructions on how to enroll in the protection services.

More information is available on the Port of Seattle’s website here.