Cyberattacks: cybersecurity alert for the global aviation sector

North American airlines under threat especially. FBI points the finger at Scattered Spider hackers

The cyberattack that in recent hours has hit Qantas (see AVIONEWS), compromising the data of millions of passengers although not affecting flight operations, is part of a broader landscape of vulnerabilities impacting global aviation. The FBI has recently issued a warning regarding a group of cybercriminals operating under the name Scattered Spider, accused of targeting multiple airlines, especially in North America.

Already at the end of June, and therefore before the Qantas incident, the websites of Hawaiian Airlines and Alaska Airlines had been compromised, with unexpected messages appearing during flight searches. The Canadian carrier WestJet is also reported to have been targeted by Scattered Spider, prompting it to raise alert levels to protect passengers’ personal information. Fortunately, in these cases, flight operations were not interrupted, a fact that according to expert analysts suggests that the airlines involved had strong security barriers separating different parts of their networks, or had effective contingency strategies to avoid operational disruptions in emergencies.

Scattered Spider, composed of young hackers, is known for its ability to penetrate corporate IT systems and demand ransoms for stolen sensitive information. The group has a history of extortion, including high-profile attacks against entertainment and hospitality giants such as MGM Resorts and Caesars Entertainment in September 2023, involving millions of dollars in ransom payments. Previously, they were suspected of targeting insurer Aflac, potentially stealing sensitive data such as social security numbers and health information.

Concerns over cyberattacks in the aviation sector are not limited to the airlines alone but extend to their IT suppliers and subcontractors, expanding the potential attack surface. Authorities, including the Australian Cyber Security Centre and the Office of the Australian Information Commissioner, are working closely with Qantas in the investigations, while international monitoring of groups like Scattered Spider is intensifying to safeguard an industry as critical as air transportation.

But we ask ourselves: what would happen if the global air traffic nerve centers were targeted?

1- To be continued

red/f - 1264630
Sydney, Australia, 07/02/2025 14:45
AVIONEWS - World Aeronautical Press Agency

AirlinesQantas victim of cyberattack: potentially 6 million customers involved

"No financial data has been compromised", assures the airline, but "a significant amount of information has been stolen"

Names, emails, phone numbers, dates of birth and frequent flyer numbers exposed. Investigation launched more

Similar

Civil aviationFincantieri Marine Group appoints new CEO

It is George A. Moutafis effective from July 1st, 2025

Fincantieri Marine Group (FMG), the US subsidiary of Fincantieri –one of the world’s largest shipbuilding groups and a global leader in the construction of highly complex vessels– announces the appointment of Ge... more

AirlinesCyberattacks (2): hackers and failures threaten global air traffic

From data breaches to control center blackouts: an analysis of vulnerabilities and urgent strategies

Drawing inspiration from the latest cyberattack, this time targeting the Australian airline Qantas (see AVIONEWS), a much broader threat landscape to the air transport sector is taking shape: the FBI has... more

AirlinesLufthansa Cargo: the new board of directors was installed yesterday

With the unprecedented BoD, a new chapter opens for the all-freighter airline

Lufthansa Cargo announced on LinkedIn that the new Board of Directors took office yesterday, July 1, 2025. Frank Bauer, previously Chief Financial Officer and Head of Human Resources, has assumed the role... more