Free Demo

Trending

Report: Global Cybersecurity Report 2025          Report: Europe Threat Landscape Report 2025          Report: APAC Cyber Threat Landscape Report 2025          Report: North America Cyber Threat Landscape Report 2025          Report: META Threat Landscape Report 2025          Recognition: Cyble Recognized in the Gartner® Hype Cycle™ for Cyber-Risk Management, 2025          Recognition: Cyble Named a Sample Vendor in Gartner® Hype Cycle™ for Managed IT Services 2025         
Report: Global Cybersecurity Report 2025          Report: Europe Threat Landscape Report 2025          Report: APAC Cyber Threat Landscape Report 2025          Report: North America Cyber Threat Landscape Report 2025          Report: META Threat Landscape Report 2025          Recognition: Cyble Recognized in the Gartner® Hype Cycle™ for Cyber-Risk Management, 2025          Recognition: Cyble Named a Sample Vendor in Gartner® Hype Cycle™ for Managed IT Services 2025         
HomeBlog
Airlink International U.A.E leaked data spilled on multiple platforms

Airlink International U.A.E leaked data spilled on multiple platforms

Cyber attacks are being executed at a large scale these days, and mostly the organizations that deals in handling the Personal Identifiable Information of their users are at the receiving end. Once the data is exposed on the dark web or sold to a malicious individual/group, that data may keep on re-occurring on dark web forums/markets.

As part of our daily monitoring, Cyble researchers noted a threat actor sharing leaked data of Airlink International UAE for free on two different platforms.

“Established in 1976, Airlink International U.A.E. has been set up to be a one-stop company for any travel and logistics requirement. With 200+ employees, around $250 million revenue (Source) and PII of 1000s of customers, Airlink U.A.E becomes a target for malicious actors”

The data leak was due to a misconfigured server which lead to exposure of 60 directories having approximately 5,000 files each; The leak was reported on May 30, 2020 which was not covered at a large scale. Now, another threat actor is trying to gain fame using the opportunity and sharing the data (14 folders and 53,555 files) for free on multiple dark web forums.

The files are divided into below mentioned categories–

  • Passport scans
  • Flight bookings
  • Hotel bookings
  • Email communications between Airlink International Group employees and customers
  • Insurance policy for international travel

Cyble recommends every organization to include the steps in their checklist of secure configuration –

report-ad-banner
  • Configure server to prevent unauthorized access, directory listing
  • Review old backup and unreferenced files for sensitive information
  • Test file permissions
  • Enumeration of infrastructure and application administrator interfaces
  • Consider running scans and doing audits periodically to help detect future misconfigurations or missing patches

About Cyble

Cyble is a global threat intelligence SaaS provider that helps enterprises protect themselves from cybercrimes and exposure in the darkweb. Cyble’s prime focus is to provide organizations with real-time visibility into their digital risk footprint. Backed by Y Combinator as part of the 2021 winter cohort, Cyble has also been recognized by Forbes as one of the top 20 Best Cybersecurity Startups To Watch In 2020. Headquartered in Alpharetta, Georgia, and with offices in Australia, Singapore, and India, Cyble has a global presence. To learn more about Cyble, visit www.cyble.io.    

Disclaimer: This blog is based on our research and the information available at the time of writing. It is for informational purposes only and does not constitute legal, financial, or professional advice. While we strive for accuracy, we do not guarantee the completeness or reliability of the content. If any sensitive information has been inadvertently included, please contact us for correction. Cyble is not responsible for any errors, omissions, or decisions made based on this content. Readers should verify findings and seek expert advice where necessary. All trademarks, logos, and third-party content belong to their respective owners and do not imply endorsement or affiliation. All content is presented “as is” without any guarantee that it is free of confidential, proprietary, or otherwise sensitive information. If you believe any portion of this content contains inadvertently shared or sensitive data, please contact us immediately so that we may address and rectify the issue. No Liability for Errors or Omissions Due to the dynamic nature of cyber threat activity, this [blog/report/article] may include partial, outdated, or otherwise incorrect information due to unverified sources, evolving security threats, or human error. We expressly disclaim any liability for errors or omissions or any potential consequences arising from the use, misuse, or reliance on this information.
why cyble

Get Threat Assessment Report

Identify External Threats Targeting Your Business​
Get My Report
Free
Cyble Vision
AI-Ransomware-Hacktivism-Webinar

Threat Landscape Reports 2025

annual-threat-report-2025
Europe cyber landscape
APAC Cyber Threat Landscape
North America Cyber Threat Landscape Report
META Threat Landscape
Australia New Zealand threat report

Upcoming Webinars

global-webinar-banner
Stay-Ahead-of-Cyber-Threats
CISO's Guide to Threat Intelligence 2024

CISO’s Guide to Threat Intelligence 2024: Best Practices

Stay Ahead of Cyber Threats with Expert Insights and Strategies. Download Free E-Book Now

Cyble | Amazon Music
Azure-MP-logo
google-ad-cyble
Share the Post:

Related Posts

Scroll to Top

Discover more from Cyble

Subscribe now to keep reading and get access to the full archive.

Continue reading