Cybercriminals are selling the personal details of 30 million passengers of Malindo Air and Thai Lion Air, two subsidiaries of Indonesia’s Lion Group, on underground marketplaces. Researchers with Kaspersky Lab recently spotted the data being posted on forums. The leaked information includes passport data, addresses and phone numbers.
Malindo Air has launched an investigation into the breach. The Malaysian airline is notifying local authorities and has recommended customers online frequent flyer accounts to change their passwords. Thai Lion Air has so far declined to address the incident in a public statement.
Read more: Malaysia’s Malindo Air confirms passenger data breach