Airlines data leak report not by us, says Moscow-based cybersecurity firm

Kaspersky Lab says information on a data leak involving Malindo and Thai Lion Air had been reported earlier by the Under the Breach cybercrime Twitter channel. (Bernama pic)

PETALING JAYA: Moscow-based cybersecurity firm Kaspersky Lab has clarified that it never produced a report or any other specific intelligence on the Lion Group airlines data leak.

It said the information had been reported earlier by the Under the Breach cybercrime Twitter channel.

Malindo Air, a subsidiary of Indonesia’s Lion Group, had said yesterday it was investigating a data breach involving the personal details of its passengers.

Reuters had quoted Kaspersky as saying in a report that the details of about 30 million passengers of Malindo and fellow Lion Group subsidiary, Thai Lion Air, were posted in online forums.

The report said the leaked information included passengers’ passport details, addresses and phone numbers.

In a statement today, Kaspersky said: “On Sept 13, two days after information about the Malindo Air and Thai Lion Air data breach went public, we sent an alert to our Kaspersky Security Cloud users in Thailand and Malaysia.

“The alert notified them of the breach and asked them to treat incoming emails, text messages and calls with additional caution. This was done via Security News – the in-product component used to rapidly inform our users about important cybersecurity-related news emerging in the public domain.

“Kaspersky has never produced a report or any other specific intelligence on the Lion Group airlines data leak. The information was earlier reported by Under the Breach Twitter channel.”

Meanwhile, Communications and Multimedia Minister Gobind Singh Deo said he is waiting for a full report on the data breach.

“The matter was brought up to me and I have requested for a complete report. I will wait for the report before making any comments,” he said in Putrajaya.