Malindo Air customer databases leaked by a contractor

23.09.2019

Back to news

Reportedly 30 million Malindo Air passengers got their data compromised in a third-party leak.

Two former employees of the e-commerce contractor working with Malindo Air, Indonesian Lion Group's Malaysian subsidiary, breached passenger information online posting it in forums.

Some parts of the procured databases were put up for sale on the dark web. The incident ensued from the unauthorised access by the e-commerce services provider which took the clients’ personal details.

It has been already reported that no cloud service misconfiguration had been involved (Malindo Air uses Amazon Web Services architecture).


Employee monitoring solution functions as an early warning system detecting the source and the reason of a potential policy violation. The software tells a human error from malicious activity and helps a company prevent a data breach saving reputation and maintaining the number of clients.