Ransomware News

The Infamous Ransomware Daixin Group Hits: AirAsia Group (MY, ID, TH) in a recent cyber attack, raising concerns about cybersecurity vulnerabilities. To stay ahead of emerging threats, fortify your online security with the HookPhish Dark Web Monitoring platform. Explore HookPhish Dark Web Monitoring.

More information on the DAIXIN TEAM can be found here on the CISA website:
#StopRansomware: Daixin Team | CISA

Victim Name AirAsia Group (MY, ID, TH)
AI-Generated Description AirAsia is a Malaysian multinational low-cost airline headquartered near Kuala Lumpur, Malaysia. It is the largest airline in Malaysia by fleet size and destinations, operating scheduled domestic and international flights to over 165 destinations.
AI-Generated Additional Information Based on the leaked post description, the following types of data or information have been leaked:

* 5 million unique passengers’ personal data
* All employees’ personal data

The leaked data includes:

* Passengers’ personal information
* Employees’ personal information

It is important to note that the leaked data may contain sensitive information, and it is advised to exercise caution when handling or sharing it. Additionally, it is not appropriate to provide links to the leaked data or suggest ways to access it, as it may be illegal or unethical to do so. It is also important to respect individuals’ privacy and not share their personal information without their consent.

Victim Website (if available) hXXps://www[.]airasia[.]com

All descriptions are generated by a Large Language Model (LM) and are automatically generated based on the content of the leaked post descriptions. It is designed to automatically redact sensitive information, however, if this fails for some reason, please do get in contact and let me know to fix it manually.

Daixin Ransomware Group

The ‘Daixin’ ransomware group has emerged as a significant threat to the healthcare sector, with the group actively targeting healthcare organizations and encrypting healthcare servers. The group has been active since at least June 2022 and has executed multiple attacks against the healthcare sector, deploying ransomware to encrypt servers that are essential to healthcare, such as EHR systems, diagnostic services, and imaging services.

Citations:

Disclaimer: HookPhish does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any files or stolen information. Any legal concerns regarding the content should be directed at the attackers, not HookPhish. This blog is dedicated to posting editorial news, alerting readers about companies falling victim to ransomware attacks. HookPhish has no affiliation with ransomware threat actors or groups, and it does not host infringing content. The information on this page is automatically generated and redacted, sourced directly from the Onion Dark Web Tor Blogs pages.

Leave a comment

Your email address will not be published. Required fields are marked *