KUALA LUMPUR: In response to Malaysia Airlines' statement that its website was not hacked, and that the taking over of the website "does not affect their bookings and that user data remains secured", hackers claiming to be from the "Lizard Squad" then leaked an itinerary online.
In a tweet, the group said that MAS was "lying", and asked followers to refer to an image of the itinerary uploaded on imgur. The link appears to be broken.
According to media reports, the itinerary apparently contains a list of passenger names including that of International and Trade Industry Minister Datuk Seri Mustapa Mohammad.
The Star Online reports that one of the passengers whose name and contact details were listed in the itinerary confirmed he booked a flight with MAS.
“I will call them to check if my booking has been compromised,” he said.
Earlier, Malaysia Airlines website was taken over on Monday (Jan 26) by hackers who referenced the Islamic State and claimed to be from the "Lizard Squad", a group known for previous denial-of-service attacks.
Like Page
It was not clear why the troubled airline was targeted but the hacking group said on its Twitter feed that it was "Going to dump some loot found on malaysiaairlines.com servers soon."
Visitors to the website were re-directed to another page bearing an image of a tuxedo-wearing lizard and reading "Hacked by LIZARD SQUAD -- OFFICIAL CYBER CALIPHATE".
It also carried the headline "404 - Plane Not Found", an apparent reference to the airlines' puzzling loss of flight MH370 last year with 239 people aboard which tipped the already struggling carrier into crisis.
Media reports said versions of the website takeover in some regions included the wording "ISIS will prevail".
Malaysia Airlines released a statement confirming its Internet domain name had been compromised, re-directing users.
"At this stage, Malaysia Airlines' web servers are intact," it said, but added it could take nearly 24 hours to fully resolve the issue, which it had reported to Malaysian authorities. "Malaysia Airlines assures customers and clients that its website was not hacked and this temporary glitch does not affect their bookings and that user data remains secured."
A caller to Channel NewsAsia's hotline, Adam Abdul Rahim, sent a picture of a webpage which visitors to Malaysia Airlines' website were re-directed to (below).
Screengrab of the hacked Malaysia Airlines website, protectedly carried out by a group calling itself "Lizard Squad". (Photo: Adam Abdul Rahim)
The Lizard Squad is a group of hackers that has caused havoc in the online world before, taking credit for attacks that took down the Sony PlayStation Network and Microsoft's Xbox Live network last month.
The extent of links with the Islamic State, if any, however, are not yet known.
The Islamic State, or IS, has seized large swathes of Syria and Iraq in a brutal campaign and declared an independent Islamic "caliphate". It also has used social media in recruiting and spreading its message.
The group has prompted world revulsion with its video-taped executions of journalists and other foreigners it has captured.
On Sunday, it claimed to have beheaded a Japanese security contractor. A second Japanese captive has also been threatened with execution.
Concerns over IS have spiked in Malaysia after scores of its citizens were lured to Syria to fight for IS. Malaysian authorities last week said they have detained 120 people suspected of having IS sympathies or planning to travel to Syria.
The unexplained loss of MH370 and the airlines' poor crisis-handling in the aftermath of the disappearance severely damaged public confidence in the carrier, sending business into a tailspin.
It has since been taken over by a Malaysian government investment fund seeking to rescue the company.
- CNA/Agencies/rw
