Daixin Ransomware Gang Steals 5 Million AirAsia Passengers’ and Employees’ Data


The cybercrime group called Daixin Team has leaked sample data belonging to AirAsia, a Malaysian low-cost airline, on its data leak portal.

The development comes a little over a week after the company fell victim to a ransomware attack on November 11 and 12, per DataBreaches.net.

The threat actors allegedly claim to have obtained the personal data associated with five million unique passengers and all of its employees.

The samples uploaded to the leak site reveal passenger information and the booking IDs as well as personal data related to the company’s staff.

Daixin Ransomware

A spokesperson for the threat actor told DataBreaches.net that further attacks were not pursued owing to AirAsia’s poor security measures and “the chaotic organization of the network.”

Daixin Team was recently the subject of an advisory from the U.S. cybersecurity and intelligence agencies, which warned of attacks mainly aimed at the healthcare sector.

Other victims of the criminal group include Fitzgibbon Hospital, Trib Total Media, ista International GmbH, and OakBend Medical.

The Hacker News has reached out to AirAsia for comment and we will update the story if we hear back.

Products You May Like

Articles You May Like

Oracle Fusion Middleware Vulnerability Actively Exploited in the Wild: CISA
New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection
U.S. Bans Chinese Telecom Equipment and Surveillance Cameras Over National Security Risk
Google Increases Android Security With Memory-Safe Programming Languages
Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Leave a Reply

Your email address will not be published. Required fields are marked *