Summary: The ransomware group Qilin has claimed responsibility for a cyber attack on Kuala Lumpur International Airport (KLIA) that caused significant disruptions. The attack, which began on March 23, 2025, affected various operational aspects of the airport, leading to a rejection of a million ransom demand. KLIA has launched an investigation into the incident, which reportedly involved the theft of 2 TB of data.
Affected: Kuala Lumpur International Airport (KLIA)
Keypoints :
- Qilin, also known as Agenda, is a Russia-based ransomware gang that has conducted numerous attacks since its inception in 2022.
- The March 2025 attack on KLIA is the first confirmed incident by Qilin affecting the transportation sector.
- Ransomware attacks like this can result in serious operational disruptions, including data loss, flight cancellations, and increased risk of fraud.