The US Government Accountability Office (GAO) has conducted a report into the Federal Aviation Administration (FAA)'s cyber security, finding that airline Wi-Fi could be vulnerable to hacks.
Four cybersecurity experts were consulted to put the report together and they said the firewall could be hacked like any other software and circumvented to put both passengers and the wider internet at risk.
The report explained that IP networking may allow a hacker to gain remote access to the aeroplane's systems - both those used by passengers and staff to access Wi-Fi and those using the internet in general.
This first threat would only affect people using the specific network, but could have devastating results if a hacker is able to use the network to break into the cockpit avionic systems.
"The presence of personal smartphones and tablets in the cockpit increases the risk of a system's being compromised by trusted insiders, both malicious and non-malicious, if these devices have the capability to transmit information to aircraft avionics systems," the report said.
The second threat is that anyone from the outside world could potentially attack the systems too, and inject malware onto devices. The outsiders could then attack the whole aircraft remotely.
"One cybersecurity expert noted that a virus or malware planted in websites visited by passengers could provide an opportunity for a malicious attacker to access the IP-connected onboard information system through their infected machines," the research revealed.
The GAO said: "As part of the aircraft certification process, FAA's Office of Safety (AVS) currently certifies new interconnected systems through rules for specific aircraft and has started reviewing rules for certifying the cybersecurity of all new aircraft systems."
-
New chapter, same partners: Keeping the channel aligned with changeIndustry Insights How to maintain strong channel partnerships amid evolving strategies and market change
-
Palo Alto Networks snaps up CyberArk in identity security pushNews The acquisition marks the latest in a string for Palo Alto Networks
-
British Airways reveals massive data breach, could face £500m fine under GDPRNews The financial and personal details of 380,000 customers were stolen in the hack
-
EU calls EU Passenger Name Record 'unreasonable'News The plans to track passenger details is also unjustified, even though it's designed to combat terrorism
-
United Airlines will reward hackers with air milesNews Bug bounty programme is first of its kind for US airline industry
-
Should you be worried about the BA frequent flyer account hack?News Hackers have reportedly gained access to thousands of British Airways frequent-flyer accounts
-
Public Wi-Fi hotspots in hotels and conference centres pose remote access riskNews The vulnerability allows read and write access to an invidual or network's Linux file system
-
Oyster card ‘free travel’ hack to be releasedNews Research behind a hack of the Oyster card will be released which has serious implications for cards using the same MIFARE chip around the world
-
Government launches £9m internet safety ad campaignNews The plan, meant to raise awareness of the dangers of the internet, will launch this summer.
