Back in March 2019, Malindo Air suffered a data breach which compromised the passenger records of over 45 million of its customers. While the airline (which has since been rebranded to Batik Air following the pandemic) announced that it has successfully contained the leak in September 2019, the consequence of the cybersecurity issue was not known until today, whereby the leaked data has been spotted in an online forum known for selling personal data.
As shared by @xanda on Twitter, it seems that the compromised database has surfaced at an online forum named clear net. The leaked passenger records from 2019 include sensitive information such as email addresses, dates of birth, physical addresses, passport numbers and phone numbers.
Malindo Air (a Malaysian airline) database dump published in clear net. The database contains email addresses, dates of birth, physical addresses, passport numbers and phone numbers; claimed to be breached in 2019 pic.twitter.com/MVKlYtDREN
— Adnan (xanda) Mohd Shukor (@xanda) September 5, 2022
During the cybersecurity incident in 2019, an organisation called Spectre claimed that there are responsible for the leak. As a response to the incident, Malindo Air initiated an auto-reset of all customer passwords and warned them to be wary of suspicious emails and calls.
Thankfully, the data leak didn’t affect the credit card and banking details of the over 45 million Malindo Air customers. However, the sensitive information leaked can still be used in other malicious ways.
So, what do you guys think of the whole incident? Share your thoughts with us in the comments below and stay tuned to TechNave for more trending tech news!
COMMENTS