KUALA LUMPUR, Jan 27 — The “Lizard Squad” hacker group that has claimed responsibility for yesterday’s attack on Malaysia Airlines’ (MAS) website warned today that it will leak more of the data it allegedly gleaned from the national carrier’s servers.
The group, scoffing a second time at MAS for claiming its user data had not been affected by the hack, announced on Twitter that it is still organising its next leak from the carrier’s email system.
“More to come soon. Side note: We’re still organizing the @MAS email dump, stay tuned for that,” wrote @LizardMafia, the group’s Twitter handle.
Yesterday, MAS’ official website had its page defaced with the words “Isis will prevail” by hackers calling themselves the “Cyber Caliphate”. Isis is believed to be in reference to the outlawed militant group now known as Islamic State.
The main page of the website was replaced with a photo of Airbus A380 jetliner bearing MAS’ logo, with the words “404 — plane not found”, a reference to Internet error code “404 not found”.
A few minutes later, the page was then changed to a black background, listing another entity called “Lizard Squad” from Finland as one of those responsible for the hack. The squad’s logo is that of a lizard wearing a tuxedo, a top hat, a monocle and smoking a pipe.
A check on @LizardMafia’s Twitter account later showed a posting from earlier that said the squad was “cooking up something special”.
It also tweeted “Going to dump some loot found on http://www.malaysiaairlines.com/ servers soon”, likely referring to leaking private information of customers stored on MAS’ servers.
In a statement, MAS later confirmed the attack on its Domain Name System (DNS) but said the incident only resulted in a “temporary glitch” that did not affect flight bookings or user data.
“The airline has resolved the issue with its service provider and the system is expected to be fully recovered within 22 hours,” it said in the statement on its Facebook page.
“Malaysia Airlines assures customers and clients that its website was not hacked and this temporary glitch does not affect their bookings and that user data remains secured.”
But shortly after MAS’ statement, Lizard Squad took to Twitter to accuse the national carrier of “lying” about its user data remaining uncompromised.
It later posted an image of what is believed to be the national carrier’s email system, which lists, among others, an urgent flight reservation for the International Trade and Industry Minister Datuk Seri Mustapa Mohamed.
The image also lists a number of travel itinerary receipts containing the full names of passengers, their email addresses and contact numbers.
