What’s worse?
Being hit by ransomware assault that sees criminals steal details about your workers and passengers…
or…
Being hit by ransomware assault that sees criminals steal details about your workers and passengers, AND then have the gang inform the world that your agency’s IT infrastructure is so chaotic, poorly-secured, and downright irritating that it refuses to repeat the assault.
That’s the humiliating slap within the face given by the Daixin Team ransomware gang to Air Asia which misplaced the non-public information of 5 million passengers and all staff earlier this month.
As DataBreaches.internet studies, the incompetence of AirAsia may very well have spared the airline from additional assaults:
“The chaotic organization of the network, the absence of any standards, caused the irritation of the group and a complete unwillingness to repeat the attack,” the spokesperson for Daixin Team stated. “The group refused to pick through the garbage for a long time. As our pentester said, ‘Let the newcomers sort this trash, they have a lot of time.’”
“The internal network was configured without any rules and as a result worked very poorly. It seemed that every new system administrator ‘built his shed next to the old building.’ At the same time, the network protection was very, very weak.”
Ouch.
AirAsia declined to touch upon the DataBreaches.internet report. Frankly you may’t blame them for ducking that one.
Found this text attention-grabbing? Follow Graham Cluley on Twitter or Mastodon to learn extra of the unique content material we put up.