KUALA LUMPUR – Malaysian carrier Malindo Air, which is a subsidiary of Indonesia’s Lion Group, said on Wednesday that it was investigating a breach of personal data of its passengers.
Malindo Air admitted in a statement that “some personal data concerning our passengers hosted on a cloud based environment may have been compromised” although it added that it does not store any payment details of its customers on its servers.
“As a precautionary measure, we would advise passengers who have Malindo Miles accounts to change their passwords if identical passwords have been used on their other services online,” it added.
The carrier also said that it had taken “adequate measures” to ensure that other data was not affected and added that it was collaborating with independent cybercrime consultants to investigate and report into the incident.
Russian cybersecurity company Kapersky Lab had earlier warned the airlines that some of the personal details of 30 million passengers, including passport numbers, addresses, age and names, were up for sale on several online forums.
The cybersecurity firm added that Thai Lion Air, which also belongs to the same group, was also affected.