A Hawaiian Airways jet is parked at a jetway at Daniel Okay. Inouye Worldwide Airport on January 20, 2024 in Honolulu, Hawaii.
Kevin Carter | Getty Photographs
Not less than two North American airways have been victims of felony hackers just lately as cybersecurity corporations warn {that a} infamous cybercriminal group has been focusing on the aviation business.
Westjet and Hawaii Airways each mentioned in June statements that they’re responding to cyberattacks.
American Airways additionally skilled a tech difficulty on Friday, although it is unclear if it was associated or prompted in any method by hackers.
“A expertise difficulty is affecting connectivity for a few of our programs and we’re working with our companions to totally resolve the problem,” an American Airways spokesperson mentioned in an announcement. “Although we’re experiencing delays in consequence, now we have not canceled any flights presently.”
Cybersecurity corporations that work immediately with corporations hit by hackers normally chorus from speaking about particular victims, citing nondisclosure agreements. However each Google and Palo Alto Networks mentioned Friday that they’ve noticed a very efficient cybercriminal group, nicknamed Scattered Spider by the cybersecurity business, that tries to hack corporations concerned in aviation.
Scattered Spider is a loosely affiliated group of younger, principally English-speaking males who’re extraordinarily adept at sweet-talking their method into delicate laptop entry at massive corporations. From there, they usually hand that entry to outdoors cybercriminals who set up ransomware — malicious software program that locks up computer systems, rendering them inoperable — after which demand an extortion fee.
The group has been tied to assaults on Las Vegas casinos in 2023 and British shops earlier this 12 months. After Google warned that Scattered Spider was focusing on American retailers, a cyberattack hobbled a high Entire Meals provider, resulting in empty cabinets throughout the nation.
Charles Carmakal, the chief expertise officer of Mandiant, Google’s cloud safety firm, mentioned in an emailed assertion that it was monitoring “a number of incidents within the airline and transportation sector” the place Scattered Spider had damaged in.
“We’re nonetheless engaged on attribution and evaluation, however given the behavior of this actor to give attention to a single sector we advise that the business take steps instantly to harden programs,” he mentioned.
Particulars on the results of the assaults on airways are nonetheless sparse.
A WestJet spokesperson advised NBC Information in an e mail that the corporate first observed it had been hacked on June 13 and has made “important progress” to resolve it. Hawaiian Airways mentioned in a Friday submitting with the Securities and Trade Fee that it found on Monday that it had been hacked and that “Flights are at the moment working safely and as scheduled.”
Neither firm responded to questions on whether or not any flights had been canceled or delayed due to the assaults.
