ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

MalindoAir Data Breach

malindoair.com
Significant exposure
Verified breach
Accounts exposed 4,328,232
Breach date 01 Mar 2019
Added to tracker 14 Sep 2023
Data classes 10

What happened

In early 2019, the Malaysian airline Malindo Air suffered a data breach that exposed tens of millions of customer records. Containing 4.3M unique email addresses, the breach also exposed extensive personal information including names, dates of birth, genders, physical addresses, phone numbers and passport details. The data was later extensively shared on popular hacking forums.

Exposed data

Dates of birth Email addresses Genders Loyalty program details Names Nationalities Passport numbers Phone numbers Physical addresses Salutations

Recommended actions

  • Watch for targeted phishing emails referencing MalindoAir โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP