31 August 2021

Bangkok Airways hit by LockBit ransomware attack


Bangkok Airways hit by LockBit ransomware attack

Bangkok Airways, one of the biggest airline companies in Thailand, has revealed it was victim of a cyberattack resulting in hackers stealing passenger information.

The company said that it discovered a "cybersecurity attack which resulted in unauthorized and unlawful access to its information system" on August 23.

The announcement came a day after the LockBit ransomware group posted a message on their dark web leak site threatening to publish 103 GB of compressed files that it claimed was stolen from Bangkok Airways. The group gave the company five day to pay a ransom, but Bangkok Airways chose to disclose the data breach instead. In response, LockBit published the entire 200+ GB of stolen data.

Bangkok Airways said that an initial investigation confirmed that some of the personal data may have been accessed in the attack, including passenger name, family name, nationality, gender, phone number, email, address, contact information, passport information, historical travel information, partial credit card information, and special meal information. The company said that the incident did not affect its operational or aeronautical security systems.

“This incident has been reported to the Royal Thai police as well as providing notification to the relevant authorities. For primary prevention measures, the company highly recommends passengers to contact their bank or credit card provider and follow their advice and change any compromised passwords as soon as possible,” the company said.


Back to the list

Latest Posts

Windows MSHTML bug used in ransomware attacks, Microsoft says

Windows MSHTML bug used in ransomware attacks, Microsoft says

According to the Windows maker, in the wild exploitation of CVE-2021-40444 began on August 18.
17 September 2021
State-backed hackers actively exploiting recently disclosed Zoho RCE bug

State-backed hackers actively exploiting recently disclosed Zoho RCE bug

The targeted entities include academic institutions, defense contractors, as well as critical infrastructure entities.
17 September 2021
Free REvil/Sodinokibi ransomware universal decryptor released

Free REvil/Sodinokibi ransomware universal decryptor released

The tool works for all REvil victims whose files were encrypted in attacks prior to July 13, 2021.
17 September 2021
Featured vulnerabilities
Multiple vulnerabilities in cflinuxfs3
Medium Patched | 17 Sep, 2021
Information disclosure in cflinuxfs3
Medium Patched | 17 Sep, 2021
Information disclosure in Git
Medium Patched | 17 Sep, 2021
Multiple vulnerabilities in GLPI
Medium Patched | 17 Sep, 2021
Multiple vulnerabilities in cflinuxfs3
Medium Patched | 17 Sep, 2021