Malindo Air identifies employees of e-commerce contractor behind data breach
Two rogue employees of Malaysian e-commerce services provider GoQuo have been identified as the culprits behind a security breach that compromised the personal data of Malindo Air and Thai Lion Air passengers. The Malaysian and Thai airlines are subsidiaries under Indonesia's low-cost carrier group, Lion Air.
The two former employees were based at GoQuo's development centre in India and "improperly accessed and stole" personal data of the airlines' customers, said Malindo Air in the latest of a series of statements regarding the breach. The carrier said it had reported the incident to the police in Malaysia as well as India.
Stressing that all its systems were "fully secured", it further noted that the data leak had been "contained" and reiterated that no payment details were compromised in the breach. It also initiated an auto-rest of all its customers' passwords. Personal data compromised in the breach included the passenger's date of birth, passport number, and mobile number.