Friday, February 26, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

AWS says servers secure following Malindo Air data breach

September 22, 2019
in Internet Security
AWS says servers secure following Malindo Air data breach
586
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Amazon Web Services (AWS) Singapore says all servers containing data of Malindo Air customers are secured “with no further vulnerabilities”, and no payment details leaked. This confirmation follows a reported security breach that compromised personal data of 21 million passengers including that of Malindo’s sister company, Lion Air. 

Forensic and data consultants also had been appointed to assess the overall data security infrastructure, focusing on passenger data protection across all platforms, said Malindo Air in a statement Thursday. In addition, it said remedial measures involving the notification of financial institutions, the police, and other relevant authorities had been established.

You might also like

Attorney-General urged to produce facts on US law enforcement access to COVIDSafe

This chart shows the connections between cybercrime groups

Spy agency: Artificial intelligence is already a vital part of our missions

The airline reminded customers to be mindful of suspicious or unsolicited calls as well as email messages asking for verification of their personal data. 

The Malaysian carrier’s announcement followed a previous statement confirming that data of its customers that were hosted on AWS’ cloud platform might have been compromised. The cloud vendor, alongside Malindo Air’s e-commerce vendor GoQuo, had begun investigating the breach.  

An AWS spokesperson sent ZDNet this statement regarding the incident: “While we can’t get into details regarding a customer issue, it is important to clarify that AWS services and infrastructure worked as designed and were not compromised in any way. Neither the use of cloud services nor the geographic location of the data had any bearing on the issue.”

When asked why then was the data bucket unsecured, since it said its infrastructure “worked as designed”, the spokesperson declined to comment, citing it was unable to discuss details concerning a customer issue. 

And despite its mention of the server location, the US cloud vendor also refused to confirm where the AWS servers containing Malindo Air’s data resided or whether the airline had given specific instructions on where its data should be stored. AWS also declined to comment on how the security incident was remedied. 

On its part, Malindo Air said it had put in place “adequate measures” that complied with Malaysia’s Personal Data Protection Act to ensure its customer data were not compromised. The airline added that it did not store any payment details of on its servers and were compliant with the Payment Card Industry (PCI) Data Security Standard (DSS).

Members of Malindo Air’s frequent flyer programme were further advised to change their passwords if they had used similar passwords on other online services. 

The security breach came to light when Kaspersky Lab last week pushed a tip to its cloud users in Thailand, alerting them to exercise caution when managing incoming email and text messages and calls. The Russian cybersecurity vendor said personal details belonging to passengers of Lion Group’s Malindo Air and Lion Air had been posted in online forums and put on sale on the dark web. 

The breach reportedly was due to an unsecured AWS data bucket.  

Check Point Software Technologies’s Asia-Pacific head of cloud security, Michael Petit, said in a note: “Data stored in cloud services like AWS S3 buckets are only as secure as their security configuration settings. Cloud services are convenient, but require proper configuration for the best security possible within the confines of such technologies. 

“Companies may have hundreds, thousands or even millions of S3 buckets or similar cloud data storage on other competing platforms. With such complexity of data storage in the cloud, it is imperative for companies to persistently audit and correct misconfigurations, as cloud services may also change their settings occasionally,” Petit noted. “This is a necessarily laborious and time-consuming process for companies.”

According to Check Point, personal data compromised in the breach included the passenger’s date of birth, passport number, and mobile number.

RELATED COVERAGE

Lack of collaboration, disclosure affecting APAC security posture

Threat actors are collaborating more effectively than legit businesses in the region, which aren’t sharing enough intelligence with others in the industry, says Microsoft Asia CSO.

Cyberattacks can cost APAC healthcare firms $23.3M

Healthcare organisations in Asia-Pacific can incur economic losses of up to US$23.3 million from cybersecurity incidents, though, 45% have either experienced or are not even sure if they have experienced a cyber attack.

APAC consumers have little trust in digital services

Just 31% of Asian consumers believe their personal data will be managed in a trustworthy way by businesses offering digital services, with 40% revealing their trust has been compromised whilst using such services.

One in four APAC firms not sure if they suffered security breach

A quarter of Asia-Pacific companies have experienced a security incident, while 27 percent aren’t even sure because they haven’t conducted any data breach assessment–even as the region is estimated to have lost US$1.75 trillion last year due to cyberattacks.

APAC firms look to edge for faster response but worry over data security

Edge computing is being sought out for faster response and cost savings, but there are concerns about security and latency when large volumes of data are processed on such platforms.

Credit: Zdnet

Previous Post

New Datameer X Release Features Machine Learning Data Preparation

Next Post

An AI learned to play hide-and-seek. The strategies it came up with were astounding.

Related Posts

Attorney-General urged to produce facts on US law enforcement access to COVIDSafe
Internet Security

Attorney-General urged to produce facts on US law enforcement access to COVIDSafe

February 26, 2021
This chart shows the connections between cybercrime groups
Internet Security

This chart shows the connections between cybercrime groups

February 26, 2021
Spy agency: Artificial intelligence is already a vital part of our missions
Internet Security

Spy agency: Artificial intelligence is already a vital part of our missions

February 26, 2021
Chinese cyberspies targeted Tibetans with a malicious Firefox add-on
Internet Security

Chinese cyberspies targeted Tibetans with a malicious Firefox add-on

February 26, 2021
SolarWinds cybersecurity spending tops $3 million in Q4, sees $20 million to $25 million in 2021
Internet Security

SolarWinds cybersecurity spending tops $3 million in Q4, sees $20 million to $25 million in 2021

February 26, 2021
Next Post
An AI learned to play hide-and-seek. The strategies it came up with were astounding.

An AI learned to play hide-and-seek. The strategies it came up with were astounding.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

How Artificial Intelligence, Machine Learning will further advance Ed-tech sector?
Machine Learning

How Artificial Intelligence, Machine Learning will further advance Ed-tech sector?

February 26, 2021
Attorney-General urged to produce facts on US law enforcement access to COVIDSafe
Internet Security

Attorney-General urged to produce facts on US law enforcement access to COVIDSafe

February 26, 2021
Machine Learning & Big Data Analytics Education Market: Soaring Demand Assures Motivated Revenue Share During 2020-2030 – KSU
Machine Learning

Machine Learning & Big Data Analytics Education Market: Soaring Demand Assures Motivated Revenue Share During 2020-2030 – KSU

February 26, 2021
This chart shows the connections between cybercrime groups
Internet Security

This chart shows the connections between cybercrime groups

February 26, 2021
Basic laws of physics spruce up machine learning
Machine Learning

New machine learning tool facilitates analysis of health information, clinical forecasting

February 26, 2021
Creative Destruction and Godlike Technology in the 21st Century | by Madhav Kunal
Neural Networks

Creative Destruction and Godlike Technology in the 21st Century | by Madhav Kunal

February 26, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • How Artificial Intelligence, Machine Learning will further advance Ed-tech sector? February 26, 2021
  • Attorney-General urged to produce facts on US law enforcement access to COVIDSafe February 26, 2021
  • Machine Learning & Big Data Analytics Education Market: Soaring Demand Assures Motivated Revenue Share During 2020-2030 – KSU February 26, 2021
  • This chart shows the connections between cybercrime groups February 26, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates