AirAsia A.I CyberSecurity Scoring
AirAsia
Company Information
Website:http://www.airasia.com
Employees number:14,245
Number of followers:919,986
NAICS:481
Industry Type:Airlines and Aviation
Homepage:airasia.com
AirAsia Risk Score (AI oriented)
Between 600 and 649
AirAsiaAirlines and Aviation
Updated:
01/04/2026
01/04/2026
636/1000
Poor
Caa
AirAsia Global Score (TPRM)
xxxx
AirAsiaAirlines and Aviation
Score locked

AirAsiaPoor
Current Score
636Caa (POOR)
01000
2 incidents
-106 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
648
JUNE 2026
645
MAY 2026
640
APRIL 2026
636
MARCH 2026
636
FEBRUARY 2026
737
Ransomware
22 Feb 2026 • AirAsia
AirAsia, Kuala Lumpur International Airport and Malaysia Airlines: Qilin ransomware claims Malaysia Airlines hack – are passenger records at risk?
Qilin Ransomware Group Claims Attack on Malaysia Airlines
631
CRITICAL-106
MALAIR1772151934
Qilin Ransomware Group Claims Attack on Malaysia Airlines
The Qilin ransomware gang has listed Malaysia Airlines on its dark web leak site, marking the latest in a series of cyberattacks targeting the aviation sector. The group, which operates under a ransomware-as-a-service (RaaS) model, has rapidly escalated its activities, emerging as the most active ransomware operation of 2025 with over 1,000 victims that year and more than 200 additional claims in early 2026.
The incident, dated February 22, 2026, remains unconfirmed by Malaysia Airlines or investigators, as Qilin has yet to provide proof of stolen data unlike its typical tactic of releasing file samples to pressure victims. The lack of evidence leaves uncertainty about whether the attack involved a confirmed breach, a failed intrusion, or a negotiation ploy. No details have been disclosed regarding potential exposure of passenger data, employee records, or operational systems.
This follows a March 2025 ransomware attack on Kuala Lumpur International Airport (KLIA), also attributed to Qilin, which disrupted flight information displays, check-in systems, and baggage handling for over 10 hours. The aviation industry has become a prime target for ransomware groups, drawn by the combination of operational leverage and access to sensitive personal and corporate data.
Qilin, linked to Russian cybercriminal networks, has expanded its victim pool beyond traditional sectors like finance and healthcare to include critical infrastructure, government agencies, and transportation entities. Past attacks on airlines and airports have exposed passenger names, passport details, and internal documents, raising concerns about identity fraud and phishing risks.
Malaysia’s aviation sector has faced repeated cyber threats, including a 2022 ransomware attack on AirAsia by the Daixin Team and a 2020–2021 data breach at Malaysia Airlines. While the current claim lacks verification, analysts note that ransomware groups often withhold evidence during negotiations, with data dumps or public disclosures occurring only if talks fail.
The incident underscores the growing vulnerability of global aviation to cyber extortion, with ransomware gangs increasingly prioritizing high-impact targets for financial gain and operational disruption.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
JANUARY 2026
736
DECEMBER 2025
732
NOVEMBER 2025
731
OCTOBER 2025
730
SEPTEMBER 2025
729
AUGUST 2025
728
NOVEMBER 2022
790
Ransomware
01 Nov 2022 • AirAsia
AirAsia
AirAsia Group Data Breach by Daixin Ransomware
667
CRITICAL-123
AIR1013221122
AirAsia Group was targeted by Daixin ransomware group that exposed 5M UNIQUE Passenger personal data, and all employee's personal data leaked.
The exposed information includes the date of birth, country of birth, where that person is from when employed for employees and the “secret question and answer” used to secure accounts.
The group claims that after encrypting its database and requesting an unspecified price to unlock it and reveal how it gained access to the network, it gave AirAsia a sample of the data.
In order to avoid encrypting or destroying anything that would be life-threatening, Daixin Team stated it had avoided locking up crucial files linked to flying equipment.
However, it has entirely restricted access to staff and passenger records until payment has been received.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for AirAsia ??
What was AirAsia's A.I Rankiteo Cyber Score in June 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in May 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in April 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in March 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in February 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in January 2026 ??
What was AirAsia's A.I Rankiteo Cyber Score in December 2025 ??
What was AirAsia's A.I Rankiteo Cyber Score in November 2025 ??
What was AirAsia's A.I Rankiteo Cyber Score in October 2025 ??
What was AirAsia's A.I Rankiteo Cyber Score in September 2025 ??
What was AirAsia's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on AirAsia's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with AirAsia ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view AirAsia's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?