Threat Intelligence
Essential Reading
GPS Spoofing in Aviation
IATA logged over 1,000 GPS spoofing and jamming incidents affecting commercial aviation in 2023 — with hotspots over the Middle East, Black Sea, and Baltic Sea.
Ransomware at Airports
SpiceJet ransomware attack (June 2022) disrupted flights and stranded passengers — one of multiple ransomware incidents targeting aviation in a two-year period.
ACARS Vulnerabilities
ACARS communications are transmitted in cleartext without authentication — a known vulnerability that security researchers have demonstrated attack scenarios against since 2013.
Further Reading
OT/ICS Attacks on Air Traffic Control
Nation-state groups including APT28, Sandworm, and APT41 have been documented conducting reconnaissance against aviation infrastructure including ATC systems.
Aviation Supply Chain Cyber Threats
Aviation software vendor Aviaso was compromised in a supply chain attack — demonstrating how trusted vendors with deep airline system integration become threat vectors.