The availability of the data on the dark web could pose organizations to serious risk, threat actors could use this data to carry out multiple malicious attacks.
Cyble discovered the data leak as part of its daily monitoring.
Airlink International U.A.E. is a leading company for any travel and logistics requirements. It has more than than 200 employees with around $250 million in revenue.
The data leak is the result of a misconfigured server containing 60 directories with approximately 5,000 files each.
“The files present accommodation reservations, airline tickets and other logistics services that the company provides on a global scale. In a quick inspection by sampling, it was possible to observe customers of different nationalities and services provided in Africa, Asia and Europe.” reported the media.
According to Cyble, now, another threat actor is spreading the same data on multiple dark web forums in an attempt to gain fame.
Leaked data includes 14 folders and 53,555 files divided into the following categories:
Cyble provides recommends the following recommendation to the organizations:
(SecurityAffairs – hacking, Airlink International UAE)