Malindo investigating customer data breach

  • Nation
  • Wednesday, 18 Sep 2019

PETALING JAYA: Malindo Miles is investigating a recent compromise of personal data of Malindo Airways passengers stored in a cloud-based environment, says Malindo Air.

The company, in a statement on Wednesday (Sept 18), assured customers that it did not store payment details on its servers and, that its payment systems complied with the Payment Card Industry Data Security Standard (PCI DSS).

Nonetheless, it advised passengers who had Malindo Miles accounts to change their passwords if they have used identical passwords on other online services.

“Our in-house teams, along with external data service providers, Amazon Web Services (AWS) and GoQuo, and our e-commerce partners, are currently investigating this breach.

“We are in the midst of notifying the various authorities both locally and abroad including CyberSecurity Malaysia.

“Malindo Air is also engaging with independent cybercrime consultants to investigate and report this incident," Malindo Air said.

The company added that it had put up adequate measures to ensure that the data of its passengers were not compromised in line with the Malaysian Personal Data Protection Act 2010.

“We will continue to provide further updates through our website, mobile and social media platforms, ” it said.

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 7
Cxense type: free
User access status: 3

Across The Star Online