AirAsia ransomware attack: Probe ongoing to find source and impact of compromised data, says Fahmi

  • Nation
  • Saturday, 10 Dec 2022

PETALING JAYA: Investigations are ongoing to find the source of the ransomware attack that compromised the personal data of five million passengers and all employees of AirAsia, says Fahmi Fadzil.

The Communications and Digital Minister said the ministry viewed the incident seriously, with personal information belonging to the airline’s passengers and staff being breached by hacker group Daixin Team.

ALSO READ: AirAsia allegedly hit with ransomware attack, data of five million passengers and employees reportedly compromised (Updated)

“The investigation team from the ministry comprising the Personal Data Protection Department and CyberSecurity Malaysia has started its probe by having discussions with Capital A Bhd, the company that runs AirAsia on Dec 1.

“Early investigations show that the cyberattack on the AirAsia server on Nov 12 was caused by an unpermitted access into the system.

“This led to the ransomware attack which could potentially cause a data leak,” Fahmi said in a statement on Saturday (Dec 10).

Following the discussion with Capital A, the company was ordered to produce related documentation and evidence from the incident to assist in the probe.

“Further investigations are still ongoing to identify the source of the attack as well as the impact caused by the incident.

“However, details of the case cannot be revealed to the public for the time being while the probe is still underway to avoid any legal complications,” Fahmi added.

ALSO READ:Curb data leaks with heavier penalties’

In the meantime, the minister urged all data users to always be on alert and beef up cybersecurity from time to time to ensure the safety of their databases and digital infrastructure.

“I also hope data users will outline cybersecurity policies and make sure these moves are followed as preventive measures against potential intrusions by irresponsible parties,” he said.

ALSO READ: Over 800,000 Malaysians' personal data with photos, allegedly stolen from MySPR site, being sold for about RM9,000

On Nov 23, it was reported that the personal data of five million passengers and all employees of AirAsia were compromised by the Daixin Team, with the group claiming responsibility for the ransomware attack.

Reports said some of the personal data included passenger IDs, full names and booking IDs, as well as employee details like photos, secret questions and answers (likely for account recovery), nationality and date of birth.

AirAsia has previously addressed the incident in an announcement made via the Bursa Malaysia website, stating that “the cyberattack was on redundant systems and did not affect our critical systems” and that it had “taken all measures to immediately resolve this data incident and prevent such future incidents”.

Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!

Next In Nation

Meeting with King not about Cabinet reshuffle, says PM
Taiping businesswoman loses RM213,700 after being scammed by two bogus moneylenders
Cloud seeding to be carried out if API stays above 150 for more than 24 hours
Lorry runs over, kills female biker near Batu Pahat
Malaysian caught smuggling giant squirrels at Indian airport
Banking associations launch nationwide anti-scam campaign
Cops to take action against illegal immigrant colonies in Sabah, says Sabah police commissioner
Medicine prices must be prominent so people know what they can afford, says PM
Nine-vehicle pile-up near Shah Alam leaves one injured
Barisan yet to decide if it will contest Kemaman by-election

Air Pollutant Index

Highest API Readings

    Select State and Location to view the latest API reading

    Source: Department of Environment, Malaysia

    Others Also Read