AirAsia hit with Daixin Team ransomware attack, data leak

Malaysian low-cost airline AirAsia has been impacted by a ransomware attack on Nov. 11 and 12 by the Daixin Team ransomware gang, which claimed to compromise five million passengers' and all of the airline's employees' personal data, reports The Hacker News. Daixin Team has already leaked a sample of the compromised data, which include passenger details and booking details, as well as the airline staff's personal information, including names, birthdates, Social Security numbers, patient account numbers, medical record numbers, and medical and treatment data. AirAsia was no longer subjected to more attacks due to its subpar security measures and "chaotic" network organization, said a Daixin Team spokesperson to DataBreaches.net. Daixin Team's attack against AirAsia comes after the U.S. Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and FBI warned about the group's malicious activities, especially against the healthcare sector, with OakBend Medical, Fitzgibbon Hospital, Trib Total Media, and ista International being its most recent victims.