InfoSecBulletin Cybersecurity for mankind
Operations at Kuala Lumpur International Airport (KLIA) were unaffected by a cyber attack in which hackers demanded US$10 million (S$13.4 million).
On March 25, the National Cyber Security Agency (Nacsa) and Malaysia Airports Holdings Berhad (MAHB) announced a cyber-security threat targeting some computer systems at KLIA on March 23.
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
CISA adds Langflow flaw to its KEV catalog
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
UAP hosted “UAP Cyber Siege 2025”, A national level cybersecurity competition
“A comprehensive investigation was immediately launched to assess the nature and extent of the incident, and the relevant authorities were swiftly notified.
“The Civil Aviation Authority of Malaysia has also been informed and developments are being closely followed since receiving the MAHB report,” said Nacsa chief executive officer Megat Zulhairy Megat Tajuddin in the statement.
“Malaysia Airports assures all stakeholders that maintaining airport operations remains our focus and we are working with our airport partners to ensure that flight operations and passenger processing continue to operate normally,” said MAHB managing director Mohd Izani Ghani.
He emphasized that the safety, security, and integrity of airport systems are the top priorities now.
“The technical and operational teams are actively monitoring the situation and implementing necessary measures to safeguard the infrastructure and ensure an uninterrupted passenger experience,” he said.
Malaysian Prime Minister Anwar Ibrahim refused the hackers’ demand for US$10 million but did not provide further details.
“I didn’t even wait five seconds, I immediately answered no,” he said at Malaysia’s Police Day celebration on March 25.
A cyber attack happened one or two days ago, but the government has chosen not to surrender to the criminals. They plan to allocate more funds to improve Malaysia’s cyber-security systems.
