Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
AirAsia

AirAsia Vendor Cyber Rating & Cyber Score

airasia.com

It all starts here. 23 years ago, a dream took flight - shaping and forever changing the travel industry in Asia. The idea was simple: Make flying affordable for everyone. We made that dream happen. We started an airline in 2001. Today, we’ve evolved to become something much bigger. We’re now a world-class brand, a leading Asean airline, a digital travel and lifestyle platform; and we’re not stopping. If you’re passionate about connecting people and transforming lives, we want you onboard. When it comes to your career, your Allstar journey will be an adventure. Find your dream career destination with us.


AirAsia A.I CyberSecurity Scoring

AirAsia
Company Information
Website:http://www.airasia.com
Employees number:14,245
Number of followers:919,986
NAICS:481
Industry Type:Airlines and Aviation
Homepage:airasia.com
AirAsia Risk Score (AI oriented)
Between 600 and 649
logo
AirAsiaAirlines and Aviation
Updated:
01/04/2026
636/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
AirAsia Global Score (TPRM)
xxxx
logo
AirAsiaAirlines and Aviation
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

AirAsia
AirAsiaPoor
Current Score
636Caa (POOR)
01000
2 incidents
-106 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
648Before Incident
JUNE 2026
645Before Incident
MAY 2026
640Before Incident
APRIL 2026
636Before Incident
MARCH 2026
636Before Incident
FEBRUARY 2026
737Before Incident
Ransomware
22 Feb 2026AirAsia
AirAsia, Kuala Lumpur International Airport and Malaysia Airlines: Qilin ransomware claims Malaysia Airlines hack – are passenger records at risk?

Qilin Ransomware Group Claims Attack on Malaysia Airlines

631After Incident
CRITICAL-106
MALAIR1772151934
Qilin Ransomware Group Claims Attack on Malaysia Airlines The Qilin ransomware gang has listed Malaysia Airlines on its dark web leak site, marking the latest in a series of cyberattacks targeting the aviation sector. The group, which operates under a ransomware-as-a-service (RaaS) model, has rapidly escalated its activities, emerging as the most active ransomware operation of 2025 with over 1,000 victims that year and more than 200 additional claims in early 2026. The incident, dated February 22, 2026, remains unconfirmed by Malaysia Airlines or investigators, as Qilin has yet to provide proof of stolen data unlike its typical tactic of releasing file samples to pressure victims. The lack of evidence leaves uncertainty about whether the attack involved a confirmed breach, a failed intrusion, or a negotiation ploy. No details have been disclosed regarding potential exposure of passenger data, employee records, or operational systems. This follows a March 2025 ransomware attack on Kuala Lumpur International Airport (KLIA), also attributed to Qilin, which disrupted flight information displays, check-in systems, and baggage handling for over 10 hours. The aviation industry has become a prime target for ransomware groups, drawn by the combination of operational leverage and access to sensitive personal and corporate data. Qilin, linked to Russian cybercriminal networks, has expanded its victim pool beyond traditional sectors like finance and healthcare to include critical infrastructure, government agencies, and transportation entities. Past attacks on airlines and airports have exposed passenger names, passport details, and internal documents, raising concerns about identity fraud and phishing risks. Malaysia’s aviation sector has faced repeated cyber threats, including a 2022 ransomware attack on AirAsia by the Daixin Team and a 2020–2021 data breach at Malaysia Airlines. While the current claim lacks verification, analysts note that ransomware groups often withhold evidence during negotiations, with data dumps or public disclosures occurring only if talks fail. The incident underscores the growing vulnerability of global aviation to cyber extortion, with ransomware gangs increasingly prioritizing high-impact targets for financial gain and operational disruption.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain, operational disruption
IMPACT
Brand Reputation Impact: HighIdentity Theft Risk: Potential
DATA BREACH
Passenger namesPassport detailsInternal documentsSensitivity Of Data: HighPersonally Identifiable Information: Potential
JANUARY 2026
736Before Incident
DECEMBER 2025
732Before Incident
NOVEMBER 2025
731Before Incident
OCTOBER 2025
730Before Incident
SEPTEMBER 2025
729Before Incident
AUGUST 2025
728Before Incident
NOVEMBER 2022
790Before Incident
Ransomware
01 Nov 2022AirAsia
AirAsia

AirAsia Group Data Breach by Daixin Ransomware

667After Incident
CRITICAL-123
AIR1013221122
AirAsia Group was targeted by Daixin ransomware group that exposed 5M UNIQUE Passenger personal data, and all employee's personal data leaked. The exposed information includes the date of birth, country of birth, where that person is from when employed for employees and the “secret question and answer” used to secure accounts. The group claims that after encrypting its database and requesting an unspecified price to unlock it and reveal how it gained access to the network, it gave AirAsia a sample of the data. In order to avoid encrypting or destroying anything that would be life-threatening, Daixin Team stated it had avoided locking up crucial files linked to flying equipment. However, it has entirely restricted access to staff and passenger records until payment has been received.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial Gain
IMPACT
Passenger personal dataEmployee personal dataDatabase
DATA BREACH
Personal data5 million unique passenger personal dataAll employee personal dataHighDate of birthCountry of birthEmployment locationSecret question and answer

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for AirAsia ?
?
What was AirAsia's A.I Rankiteo Cyber Score in June 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in May 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in April 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in March 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in February 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in January 2026 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in December 2025 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in November 2025 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in October 2025 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in September 2025 ?
?
What was AirAsia's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on AirAsia's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with AirAsia ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view AirAsia's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?