Transport

Internet-Facing Aircraft Analysis Tool Expose Airlines To Potential Attacks

9 - 16 October 2018

Researchers found that more than 30 systems used by airlines to analyse data from airplane sensors were available online and could be used to pivot into datacentre systems and servers vulnerable to legacy security issues.
Cyber_News_Transport
Researchers found that more than 30 systems used by airlines to analyse data from airplane sensors were available online and could be used to pivot into datacentre systems and servers vulnerable to legacy security issues. The exposed systems were connected to the internet-facing AirFASE software, a flight data analysis software developed by Airbus and Teledyne Controls to interpret information from sensors on an aircraft and help determine operational issues and risks. Researchers observed multiple security issues with the AirFASE web panel that could allow an attacker to mount an attack and breach a targeted system. For instance, the web panel accepts sensitive traffic over HTTP, thereby allowing an attacker to intercept credentials when operators are logged on. 

References:
[1] Aircraft Analysis Tool Facing the Internet Exposes Airlines to Risks
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence