Kuala Lumpur: The recent ransomware attack on Malaysia Airports Holdings Bhd (MAHB) has raised significant concerns among cybersecurity experts regarding the resilience of the country’s critical infrastructure against cyber threats. Associate Professor Dr Muhamad Khairulnizam Zaini of Universiti Teknologi MARA said that while initial reports suggest MAHB successfully contained the ransomware attack, such incidents serve as a crucial wake-up call for all critical sectors to strengthen their cybersecurity measures in the face of increasingly sophisticated and evolving cyber threats.
According to BERNAMA News Agency, Prime Minister Datuk Seri Anwar Ibrahim revealed that the digital system of MAHB was recently attacked by hackers demanding a ransom payment of US$10 million (RM44.39 million). Media reported that the cyber attack caused a disruption lasting more than 10 hours at Kuala Lumpur International Airport (KLIA) on March 23, which rendered the airport’s flight information display system, check-in counters, and baggage handling inoperative, forcing airlines and airport staff to switch to manual operations.
Elaborating further, Muhamad Khairulnizam emphasised that such attacks must be deterred at all costs, as they could have severe operational, financial, and reputational repercussions, especially when targeting critical infrastructure like airports. He pointed out that a ransomware attack could disrupt flight schedules, interfere with ticketing systems, and pose significant security risks if sensitive passenger data is compromised, given that modern airports rely heavily on digital systems for their operations.
Muhamad Khairulnizam recommended investing in advanced technologies like artificial intelligence (AI) and real-time threat detection systems. He also stressed the importance of conducting regular security audits and enhancing employee cyber security awareness. He said that cybersecurity vulnerabilities often arise from human error, thus ongoing education and heightened awareness are essential to ensure that everyone understands how cyberattacks can originate and how to prevent them.
Echoing that, Dean Faculty of Hospitality and Management, University College of Aviation Malaysia, Dr Norulbaiti Mohd Nor said Malaysia’s aviation industry should take a proactive approach to prevent cybersecurity threats with a focus on elements of process and technology adoption. She said the elements of process involve governance and protocols that need to be continuously upgraded to adapt to evolving cyber threats.
Norulbaiti said well-known airlines like Emirates have started implementing this blockchain technology while Singapore Airlines has yet to fully integrate the technology across its broader operations, likely due to the technical complexities involved in scaling blockchain solutions beyond loyalty programmes, as well as the need for careful integration with existing legacy systems and regulatory considerations.
Meanwhile, the Civil Aviation Authority of Malaysia (CAAM) chief executive officer Datuk Captain Norazman Mahmud said CAAM collaborated closely with MAHB, providing assistance with their Business Continuity Plan (BCP), like aircraft gate allocation. “At the same time, we also work closely to ensure no future attacks and our systems architecture are robust and secure to defend against future cyber attacks,” he said when contacted here today.