Aviation


  • Ryanair links Booking.com to cyber-attack on its payment system

    December 21, 2023

    Ryanair has claimed that internet travel giant Booking.com is partly responsible for a recent “malicious attack” on the airline’s payment processing platform. Lawyers for Booking.com had described the allegation of a cyber-attack as “baseless” and “far-fetched”. “The allegations are baseless and refuted by Booking Holdings and Booking.com,” added a spokesperson for the group. Read more… Source: MSN News  

  • KLM, Air France passenger data was improperly secured, and vulnerable to data theft

    December 18, 2023

    A large amount of personal data belonging to airline passengers who flew on KLM and Air France was not properly secured, and was somewhat readily available for theft, according to NOS and information technology security researcher Benjamin Broersma. The security hole was fixed soon after the broadcaster contacted the Dutch airline. It was not immediately clear ...

  • TA422’s Dedicated Exploitation Loop – the Same Week After Week

    December 5, 2023

    Starting in March 2023, Proofpoint researchers have observed the Russian advanced persistent threat (APT) TA422 readily use patched vulnerabilities to target a variety of organizations in Europe and North America. TA422 overlaps with the aliases APT28, Forest Blizzard, Pawn Storm, Fancy Bear, and BlueDelta, and is attributed by the United States Intelligence Community to the Russian ...

  • AeroBlade on the hunt targeting the U.S. Aerospace industry

    November 30, 2023

    BlackBerry has uncovered a previously unknown threat actor targeting an aerospace organization in the United States, with the apparent goal of conducting commercial and competitive cyber espionage. The BlackBerry Threat Research and Intelligence team is tracking this threat actor as AeroBlade. The actor used spear-phishing as a delivery mechanism: A weaponized document, sent as an email ...

  • Japan space agency server likely hit by unauthorized access attack

    November 29, 2023

    Japan’s space agency was likely hit by an unauthorized access attack to a network server, the government said Wednesday, adding the incident did not involve sensitive information pertaining to rockets or satellites. Sources close to the matter said the Japan Aerospace Exploration Agency was not aware that the breach may have occurred sometime during the summer ...

  • Hacker claims to have hit General Electric and stolen company data

    November 27, 2023

    A hacker with the alias IntelBroker claims to have breached General Electric and stolen plenty of sensitive data from the company’s systems. The company operates in different fields, including aerospace, renewable energy, power, venture capital, and more. The hacker posted a new thread on an underground forum, selling access to the company’s “development and software pipelines” ...

  • Gulf Air hit with data breach, customer data possibly affected

    November 27, 2023

    Gulf Air, the national air carrier for the Kingdom of Bahrain, has confirmed suffering a data breach which most likely resulted in hackers stealing sensitive customer information. The company confirmed the news via a press release shared with local media highlighting a “data breach incident” on November 24, possibly resulting in the compromise of “some information ...

  • Singapore cyber defenders fend off simulated attacks against cellular, gas and airport systems

    November 24, 2023

    As simulated attackers tried to overload an electrical system, cripple a water distribution network and shut down a gas plant, cyber defence operators across 26 national agencies sprung into action to neutralise the assaults on a fictional state’s critical infrastructure. These were among the scenarios that more than 200 participants went through from Nov 22 to ...

  • #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

    November 21, 2023

    The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Multi-State Information Sharing & Analysis Center (MS-ISAC), and Australian Signals Directorate’s Australian Cyber Security Center (ASD’s ACSC) are releasing this joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with LockBit 3.0 ransomware exploiting CVE-2023-4966, labeled Citrix Bleed, affecting Citrix ...

  • Boeing confirms ransomware attack as stolen data released by cybercrime gang Lockbit

    November 11, 2023

    Stolen data from American aircraft manufacturer Boeing has been released online by the cybercrime gang, Lockbit, according to the group’s website. Boeing confirmed a cybersecurity incident involving elements of its parts and distribution business. “We are aware that, in connection with this incident, a criminal ransomware actor has released information it alleges to have taken from ...

  • Allied Pilots Association Hit With Ransomware Attack

    November 4, 2023

    On October 30, APA experienced a cybersecurity incident referred to by the union as a ransomware attack. In a statement, the Allied Pilots Association explained, “Upon discovery of the incident, we immediately took steps to secure our networks. Our IT team, with the support of outside experts, continues to work nonstop to restore our systems.” This ...

  • Game-changing technologies meet at SAHA EXPO 2024

    November 3, 2023

    Latest innovative solutions for the defence, aviation and aerospace industries display their strength in the new world order at the SAH EXPO 2024.  SAHA EXPO Defence & Aerospace Exhibition, the largest industrial cluster of Türkiye and Europe with nearly 1.000 companies and 26 universities, organized by SAHA Istanbul. It will be a platform where the game-changing ...

  • Boeing confirms ‘cyber incident’ after ransomware gang claims data theft

    November 2, 2023

    Aerospace giant Boeing has confirmed that it is dealing with a “cyber incident,” days after the company was listed on the leak site of the LockBit ransomware gang. In a statement given to TechCrunch, Boeing spokesperson Jim Prolux confirmed that attackers had targeted “elements of our parts and safety business.” The spokesperson added: “This issue does ...

  • India Space Agency fights 100 cyber hacking bids daily

    October 8, 2023

    India’s space agency Isro is facing more than 100 cyber-hacking attempts on a daily basis, disclosed its chairman S Somanath on Sunday. Speaking to TOI, Somanath said, “It is not only Isro, but several other systems (of other organisations) that face hundreds of cyber (hacking) attempts. But such attempts have been stopped by our several ...

  • Russia: Leonardo’s air booking system resumes after cyberattack

    September 28, 2023

    Russian state conglomerate Rostec said on Thursday it had restored normal operations at its Leonardo air booking system following what it called a “massive cyberattack from abroad”. “The cyberattack has been successfully repelled,” Rostec said in a statement. It described the incident as a Distributed Denial-of-Service (DDoS) Attack”, in which the attacker floods a server with ...

  • Hackers break into Russian database with data on hundreds of millions of flights

    September 23, 2023

    Ukrainian hackers have hacked into the Russian database of the Sirena-Travel booking system, obtaining information on 664 million flights over the last 16 years. They also obtained the names, phone numbers and document numbers of the passengers. News of this was posted on the Telegram channel of the hacker community KibOrg. An unknown group called Muppets, ...

  • Air Canada releases statement after brief cyber attack

    September 22, 2023

    Air Canada appears to have been the victim of a cyber attack after the company released a statement regarding the incident on September 21st. According to the statement, an authorized group gained what the company describes as “limited” access to an internal Air Canada system. The system was related to the personal information of both staff ...

  • China: Identity of NSA hacker behind cyberattack on China’s leading aviation university identified

    September 14, 2023

    During the investigation of the cyberattack against Northwestern Polytechnical University (NPU), a leading Chinese aviation university, China has successfully extracted multiple samples of the spyware named SecondDate, and with the collaborative efforts of partners in various countries, the real identity of the US’ National Security Agency (NSA) personnel responsible for launching the cyberattack on NPU ...

  • CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475

    September 7, 2023

    Today, CISA, Federal Bureau of Investigation (FBI), and U.S. Cyber Command’s Cyber National Mission Force (CNMF) published a joint Cybersecurity Advisory (CSA), Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475. This CSA provides information on an incident at an Aeronautical Sector organization, with malicious activity occurring as early as January 2023. CISA, FBI, and CNMF confirmed ...

  • China’s Ministry of State Security warns of data security risks after Wuhan Earthquake Monitoring Center cyberattack

    August 16, 2023

    China’s Ministry of State Security (MSS) on Wednesday warned of data security risks after recent reports identified US intelligence agencies were behind a cyberattack on Wuhan Earthquake Monitoring Center. A joint investigation team formed by the National Computer Virus Emergency Response Center (CVERC) and Chinese cybersecurity company 360 discovered malicious backdoor software that exhibits characteristics of ...