Kuala Lumpur, April 2025 – Malaysia Airports Holdings Berhad (MAHB), the operator of Kuala Lumpur International Airport (KLIA), has fallen victim to a cyberattack that disrupted its digital systems. The incident, which occurred in late March 2025, saw hackers demanding a ransom of US$10 million, prompting urgent action from authorities and raising concerns about cybersecurity within the country’s critical infrastructure (The Star Malaysia).
Cyberattack Disrupts Airport Operations
On March 23, 2025, MAHB detected a security breach affecting certain digital services at KLIA. The attack led to the failure of several digital information systems, with reports indicating that some were offline for over 10 hours. Airport personnel were forced to resort to manual operations, including displaying flight information on whiteboards to manage the disruption.
Former Malaysian MP Wee Choo Keong took to social media to highlight the severity of the incident, calling it an “international embarrassment.”
Hackers Demand Ransom; Prime Minister Responds
Malaysian Prime Minister Datuk Seri Anwar Ibrahim confirmed that the cybercriminals had demanded a ransom of US$10 million in exchange for restoring the systems. However, he firmly rejected the idea of paying, stating, “There is no way this country will be safe if its leaders and system allow us to bow to ultimatums by criminals and traitors.” (Tech Wire Asia)
How the Attack Was Carried Out
While the exact technical details of the cyberattack have not been fully disclosed, experts believe it was a ransomware attack. In such cases, hackers use malicious software to encrypt files and demand a ransom in exchange for a decryption key.
So far, no specific hacking group has claimed responsibility for the breach, and investigations are ongoing to determine the exact methods used by the perpetrators (CyberSecurity Malaysia).
Immediate Response and Investigation
Following the attack, MAHB and the National Cyber Security Agency (NACSA) launched an immediate investigation. The Civil Aviation Authority of Malaysia (CAAM) was also informed of the incident, while additional security measures were put in place to protect against further breaches.
Dr. Megat Zulhairy Megat Tajuddin, Chief Executive of NACSA, assured the public that flight operations remained unaffected despite the digital disruption. “We are working closely with MAHB to assess the damage and implement necessary countermeasures,” he stated.
Strengthening Cybersecurity Measures
In the wake of the attack, Prime Minister Anwar Ibrahim emphasized the need to enhance Malaysia’s cybersecurity defenses. He hinted at plans to allocate more resources to bolster cyber protections across key sectors, including aviation, banking, and law enforcement (International Civil Aviation Organization).
MAHB had already been working on strengthening its cybersecurity infrastructure before the attack. The company’s 2023 Annual Report detailed the implementation of the Cybersecurity Acceleration Programme 2.0, which includes regular risk assessments, employee training, and updates to standard operating procedures to counter cyber threats.
Ongoing Investigations and Future Implications
As authorities continue their investigation, more updates are expected regarding the attack and its broader implications. This incident serves as a stark reminder of the ever-present threats to digital infrastructure and the need for continuous vigilance in cybersecurity measures.
With airports being critical national assets, cybersecurity experts are calling for tighter regulations and enhanced cyber resilience programs to prevent similar incidents in the future.
English 
Hindi 
Leave a comment