Cyberattacks: cybersecurity alert for the global aviation sector

North American airlines under threat especially. FBI points the finger at Scattered Spider hackers

The cyberattack that in recent hours has hit Qantas (see AVIONEWS), compromising the data of millions of passengers although not affecting flight operations, is part of a broader landscape of vulnerabilities impacting global aviation. The FBI has recently issued a warning regarding a group of cybercriminals operating under the name Scattered Spider, accused of targeting multiple airlines, especially in North America.

Already at the end of June, and therefore before the Qantas incident, the websites of Hawaiian Airlines and Alaska Airlines had been compromised, with unexpected messages appearing during flight searches. The Canadian carrier WestJet is also reported to have been targeted by Scattered Spider, prompting it to raise alert levels to protect passengers’ personal information. Fortunately, in these cases, flight operations were not interrupted, a fact that according to expert analysts suggests that the airlines involved had strong security barriers separating different parts of their networks, or had effective contingency strategies to avoid operational disruptions in emergencies.

Scattered Spider, composed of young hackers, is known for its ability to penetrate corporate IT systems and demand ransoms for stolen sensitive information. The group has a history of extortion, including high-profile attacks against entertainment and hospitality giants such as MGM Resorts and Caesars Entertainment in September 2023, involving millions of dollars in ransom payments. Previously, they were suspected of targeting insurer Aflac, potentially stealing sensitive data such as social security numbers and health information.

Concerns over cyberattacks in the aviation sector are not limited to the airlines alone but extend to their IT suppliers and subcontractors, expanding the potential attack surface. Authorities, including the Australian Cyber Security Centre and the Office of the Australian Information Commissioner, are working closely with Qantas in the investigations, while international monitoring of groups like Scattered Spider is intensifying to safeguard an industry as critical as air transportation.

But we ask ourselves: what would happen if the global air traffic nerve centers were targeted?

1- To be continued

red/f - 1264630
Sydney, Australia, 07/02/2025 14:45
AVIONEWS - World Aeronautical Press Agency

AirlinesQantas victim of cyberattack: potentially 6 million customers involved

"No financial data has been compromised", assures the airline, but "a significant amount of information has been stolen"

Names, emails, phone numbers, dates of birth and frequent flyer numbers exposed. Investigation launched more

Similar

AirlinesFurther expansion of transatlantic alliance effective from August

Swiss WorldCargo strengthens agreement between Lufthansa Cargo and United Cargo

Swiss WorldCargo’s entry into Lufthansa Cargo’s and United Cargo’s joint business agreement has been announced today. It will provide cargo customers with more flexibility and transportation options, thank... more

AerospaceSecond Copernicus Sentinel-6 satellite heads to launch site

Liftoff is slated for November 2025

Monitoring of Earth’s rising oceans is about to get a powerful boost! Airbus, the prime contractor for the Copernicus Sentinel-6 missions, confirms that the second satellite in this critical series is o... more

AccidentsMirage 2000 fighter jet aircraft of the Ukrainian Air Force crashes

It was an accident. Pilot saved. Investigation opened on electronic failure

The aircraft was not shot down, authorities emphasize. There are no casualties or damage on the ground more