Last week, Malindo Air was rocked with the discovery of their customer data leaked onto the dark web. Investigation was made, and the culprit was found out; a ex-staff of a third-party company they  contracted copied the data of their customers.

Two ex-employees of GoQuo (M) Sdn Bhd, Malindo Air’s e-commerce services provider have been identified as the culprits. Thankfully it is not due to the company’s infrastructure or the cloud service they are using.

The official announcement through their website also states that “Malindo Air has been working closely with all the relevant agencies including the Malaysian Personal Data Protection Commissioners and the National Cyber Security Agency (NACSA) as well as their counterparts overseas.”

The company has bought in data forensics and cyber security experts in to review all the airline’s existing data infrastructure and processes as a forward proactive measure. At the same time, Malindo Air has also initiated auto-reset of all customer passwords and cautioned customers to be wary of any suspicious and unsolicited calls and emails. Customers can reach out to customer_care@malindoair.com for further assistance.