AirAsia Company Cyber Security Posture
airasia.comIt all starts here. 23 years ago, a dream took flight - shaping and forever changing the travel industry in Asia. The idea was simple: Make flying affordable for everyone. We made that dream happen. We started an airline in 2001. Today, weโve evolved to become something much bigger. Weโre now a world-class brand, a leading Asean airline, a digital travel and lifestyle platform; and weโre not stopping. If youโre passionate about connecting people and transforming lives, we want you onboard. When it comes to your career, your Allstar journey will be an adventure. Find your dream career destination with us.
AirAsia Company Details
airasia
13494 employees
818883.0
481
Airlines and Aviation
airasia.com
Scan still pending
AIR_3357924
In-progress
AirAsia Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
AirAsia Global Score.png)
AirAsia Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
AirAsia Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| AirAsia | Ransomware | 100 | 5 | 11/2022 | AIR1013221122 | Link | |
Rankiteo Explanation : Attack threatening the organization's existenceDescription: AirAsia Group was targeted by Daixin ransomware group that exposed 5M UNIQUE Passenger personal data, and all employee's personal data leaked. The exposed information includes the date of birth, country of birth, where that person is from when employed for employees and the โsecret question and answerโ used to secure accounts. The group claims that after encrypting its database and requesting an unspecified price to unlock it and reveal how it gained access to the network, it gave AirAsia a sample of the data. In order to avoid encrypting or destroying anything that would be life-threatening, Daixin Team stated it had avoided locking up crucial files linked to flying equipment. However, it has entirely restricted access to staff and passenger records until payment has been received. | |||||||
AirAsia Company Subsidiaries
It all starts here. 23 years ago, a dream took flight - shaping and forever changing the travel industry in Asia. The idea was simple: Make flying affordable for everyone. We made that dream happen. We started an airline in 2001. Today, weโve evolved to become something much bigger. Weโre now a world-class brand, a leading Asean airline, a digital travel and lifestyle platform; and weโre not stopping. If youโre passionate about connecting people and transforming lives, we want you onboard. When it comes to your career, your Allstar journey will be an adventure. Find your dream career destination with us.
Access Data Using Our API
Get company history
Rapid.png)
AirAsia Cyber Security News
China unscathed by CrowdStrike-Microsoft outage on back of cybersecurity drive
Mainland China's self-sufficiency drive in cybersecurity enabled the world's second-largest economy to emerge unscathed from Microsoft's globalย ...
What we know so far: Global IT outage affecting airlines, airports and banks worldwide, including Malaysia (VIDEO)
KUALA LUMPUR July 19 โ Chaos ensued following a global IT outage that has affecting many institutions including in Malaysia, among othersย ...
Daixin Ransomware Gang Steals 5 Million AirAsia Passengers' and Employees' Data
The cybercrime group called Daixin Team has leaked sample data belonging to AirAsia, a Malaysian low-cost airline, on its data leak portal. Theย ...
Malaysia Launches Investigation Into AirAsia Ransomware Attack
A ransomware attack compromised the personal data of approximately five million passengers and all AirAsia employees.
Daixin Ransomware Gang Abandons Hack of AirAsia due to Airlineโs โChaotic Network Standardsโ
As reported by Databreaches.net, the airline recently fell victim to a ransomware attack by the Daixin Team, with the hackers stealingย ...
Personal Data of Passengers, Employees Stolen in Ransomware Attack on AirAsia, Malaysiaโs Largest Airline
AirAsia, a budget airline that operates out of Malaysia, is dealing with the aftermath of a ransomware attack that saw the personal data of someย ...
AirAsiaโs core reservation, check-in system affected by global IT issue
AirAsia's core reservation and check-in system have been affected by a global information technology (IT) issue, the low-cost carrier saidย ...
Following data breach reports, what does AirAsia do with customer data?
AirAsia uses customer data for their loyalty program, embedded through the airasia super app, called airasia rewards.
Global Microsoft outage affects Cebu Pacific, AirAsia Philippines
A global IT system outage is affecting the operations of major local airlines on Friday afternoon.
AirAsia Similar Companies
PT. Gapura Angkasa
Established in 1998 as an independent ground services provider, Gapura offers greater competition in the local ground handling scene, providing airlines operating in more than 50 major airports Nationally with an alternative choice in quality ground services; encompassing ramp, cargo & warehousing,
China Eastern Airlines, North America
As one of the three major air carriers in China, headquartered in Shanghai, China Eastern Airlines operates 111 domestic and overseas branches across the globe. Flying a fleet of 730 aircraft which is one of the youngest fleets in major airlines worldwide. Moreover, it boasts the largest-scale in-fl
Aerolineas Argentinas
Aerolโโ neas Argentinas es la compaโยฑโโ a lโโ der en el mercado aerocomercial argentino y referente en la regiโโฅn desde 1950. Su flota de 84 aviones alcanza 38 destinos en Argentina y otros 22 a nivel regional e internacional. Con la reciente incorporaciโโฅn de 2 aeronaves de cargas, la compaโยฑโโ a expan
GOL Linhas Aรฉreas
Somos a maior Companhia Aรฉrea do Paรญs e estamos entre as que mais crescem no mundo. A nossa histรณria comeรงou em 2001 e, desde entรฃo, somos responsรกveis por inovar o mercado da aviaรงรฃo no Brasil. Tudo isso graรงas ร dedicaรงรฃo do nosso Time para garantir o nosso Valor nรบmero 1, a Seguranรงa, entregand
SpiceJet Limited
Through LinkedIn, we endeavor to connect with our flyers, exchange ideas, and announce new routes, products, and services, advertise for open positions, and continually evolve our services to better match customer needs. We encourage constructive discussion and feedback, however please note that thi
Groupe ADP
Le Groupe ADP construit, amโยฉnage et exploite des plates-formes aโยฉroportuaires de maniโยฎre responsable et โโ travers le monde, parmi lesquelles Paris-Charles de Gaulle, Paris-Orly et Paris-Le Bourget. En 2023, le groupe a accueilli sous sa marque Paris Aโยฉroport 99,7 millions de passagers sur Pari
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
AirAsia CyberSecurity History Information
How many cyber incidents has AirAsia faced?
Total Incidents: According to Rankiteo, AirAsia has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at AirAsia?
Incident Types: The types of cybersecurity incidents that have occurred incident Ransomware.
Incident Details
Can you provide details on each incident?
Incident : Ransomware
Title: AirAsia Group Data Breach by Daixin Ransomware
Description: AirAsia Group was targeted by Daixin ransomware group that exposed 5 million unique passenger personal data, and all employee's personal data leaked. The exposed information includes the date of birth, country of birth, where that person is from when employed for employees and the โsecret question and answerโ used to secure accounts. The group claims that after encrypting its database and requesting an unspecified price to unlock it and reveal how it gained access to the network, it gave AirAsia a sample of the data. In order to avoid encrypting or destroying anything that would be life-threatening, Daixin Team stated it had avoided locking up crucial files linked to flying equipment. However, it has entirely restricted access to staff and passenger records until payment has been received.
Type: Ransomware
Threat Actor: Daixin Ransomware Group
Motivation: Financial Gain
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident?
Incident : Ransomware AIR1013221122
Data Compromised: Passenger personal data, Employee personal data
Systems Affected: Database
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal data.
Which entities were affected by each incident?
Incident : Ransomware AIR1013221122
Entity Type: Airline
Industry: Aviation
Customers Affected: 5 million passengers and all employees
Data Breach Information
What type of data was compromised in each breach?
Incident : Ransomware AIR1013221122
Type of Data Compromised: Personal data
Number of Records Exposed: 5 million unique passenger personal data, All employee personal data
Sensitivity of Data: High
Personally Identifiable Information: Date of birth, Country of birth, Employment location, Secret question and answer
Ransomware Information
Was ransomware involved in any of the incidents?
Incident : Ransomware AIR1013221122
Ransom Demanded: Unspecified price
Ransomware Strain: Daixin
Data Encryption: Yes
Data Exfiltration: Yes
Additional Questions
General Information
What was the amount of the last ransom demanded?
Last Ransom Demanded: The amount of the last ransom demanded was Unspecified price.
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Daixin Ransomware Group.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Passenger personal data and Employee personal data.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was Database.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Passenger personal data and Employee personal data.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 5.0M.
Ransomware Information
What was the highest ransom demanded in a ransomware incident?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was Unspecified price.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
