- Total Records74,766,811
- Unique Emails4,333,623
- Unique Email Providers136,333
- Unique First Names10,833,348
- Unique Addresses7,445,926
Malindo Air Data Breach: What Happened in March 2019?
In March 2019, Malindo Air, a popular Malaysian airline, suffered a data breach that exposed sensitive information from its customer base. Malindo Air, part of the Lion Air Group, found itself in the headlines after unauthorized actors obtained and leaked personal details belonging to millions of its flyers. Investigations later revealed that approximately 74 million records were compromised, making it one of the most significant data breaches to impact the airline industry at that time. The leaked data included customer names, dates of birth, email addresses, physical addresses, passport numbers, and phone numbers—all information that travelers often provide when booking flights or creating frequent flyer accounts.
What Data Was Exposed in the Malindo Air Breach?
The breach resulted in the exposure of a range of customer details such as:
- Name titles, first and last names
- Full birthdates
- Email addresses
- Phone numbers and area codes
- Passport numbers
- Country, street and city addresses
- Zip codes and state information
Having this mix of personal and contact information leaked meant both privacy and identity theft risks for affected customers.
How Many Were Affected by the Malindo Air Breach?
Initial reports placed the number of impacted customers around 45 million. However, later analysis revealed that the breach actually involved around 74,766,815 records, affecting millions more than initially believed. These records spanned both current and former Malindo Air passengers, encompassing a broad global base.
Timeline of Events: From Incident to Public Disclosure
The breach occurred around March 2019. It was first discovered when customer data began surfacing on various online forums and dark web sites. As awareness grew internally, Malindo Air started working with cybersecurity professionals and local authorities to investigate the extent of the compromise.
Public notification of the breach followed, as concerned customers began to receive alerts about their information potentially being leaked. The company and industry regulators focused on containing the fallout, working to understand the incident's root cause and attempting to prevent further unwanted disclosures.
What Led to the Breach?
Independent investigations suggested the breach likely originated from a third-party IT contractor. The attackers managed to extract and publish large datasets that were meant to be securely stored. The breach highlighted the challenges airlines and other global businesses face in managing partner security and data across large, interconnected systems.
Frequently Asked Questions About the Malindo Air Data Breach
How many customers were affected in the Malindo Air breach?
The breach exposed approximately 74.7 million records relating to Malindo Air customers, impacting both past and current flyers globally.
What type of information was leaked in the Malindo Air data breach?
Information included customer's full names, email addresses, dates of birth, passport numbers, telephone numbers, and full home addresses. This data made affected individuals vulnerable to phishing and identity misuse.
When was the Malindo Air data breach discovered?
The breach was publicly disclosed in March 2019, but data appeared online shortly before then, prompting internal investigations and customer alerts.
What should I know about the cause of the Malindo Air breach?
The incident was connected to actions by a third-party IT provider, where the attackers were able to access and extract records from the airline's database environment.
How can I check if I'm in the Malindo Air breach?
You can check if your information was part of the Malindo Air breach by utilizing the DeHashed search engine.