Category: American Airlines

On the eve of Christmas 2024, many Americans will be traveling to visit loved ones and attend church services to celebrate the holiday, expressing gratitude and spreading joy. Some will take to the highways in their cars, others will board trains, and a significant portion will opt for air travel, which is both faster and more convenient, giving them more time to enjoy family gatherings.

However, for some passengers flying with American Airlines, the holiday plans quickly turned into a nightmare. The airline unexpectedly grounded its flights for approximately 69 minutes due to a technical issue in its air service controls. This brief yet disruptive shutdown caused chaos, forcing many domestic flights to return to their terminals, while international flights were delayed for up to four hours.

The disruption was not planned. It arose from an unforeseen technical glitch within American Airlines’ aviation control systems, which triggered a temporary halt in their services. Passengers who found themselves affected by this interruption took to social media platforms like Twitter and Facebook to express their frustration, with some even speculating that the disruption might have been the result of a cyberattack orchestrated by state-sponsored hackers from rival nations.

American Airlines quickly responded, reassuring the public that the pause in services was not the result of a cyberattack. Instead, it was due to the technical glitch that affected the airline’s systems, specifically in the aviation control network. The company issued a public apology, emphasizing that this was a temporary issue, and assured travelers that recovery was underway. Some flights resumed shortly after the brief pause, and the airline worked to return to a normal schedule.

This incident is a reminder of how vulnerable critical infrastructure can be, especially during busy times like the holiday season. As staffing levels at transit hubs tend to be thinner during festive periods, with many employees on holiday leave, systems often operate with limited human oversight. This creates an opportunity for cybercriminals to exploit these gaps, launching sophisticated attacks like Distributed Denial of Service (DDoS) or ransomware attacks, which can significantly disrupt operations.

For industries that rely on continuous and secure operations—particularly healthcare, transportation, manufacturing, and finance—this is a crucial lesson. The festive season, when many staff are off-duty, poses a heightened risk of cyberattacks. Businesses must take proactive measures to safeguard their systems, employing automated tools and services to defend against potential threats. Ensuring the stability and security of critical services not only helps protect operational efficiency but also fosters customer trust and minimizes the impact of any unforeseen disruptions.

This Christmas Eve incident highlights the importance of preparedness, both in terms of technical resilience and cybersecurity, as businesses across the country continue to navigate an increasingly complex digital landscape.

The post American Airlines shutdown not because of Cyber Attack appeared first on Cybersecurity Insiders.

1. Shimano, a cycle component manufacturing company, fell victim to a ransomware attack in which hackers managed to steal approximately 4.5 terabytes of sensitive business-related information. The incident is believed to be the work of the LockBit Ransomware gang and occurred on November 2, although it was not discovered until November 5 by the company’s IT staff. Some of the stolen data has been disclosed on a website called Ransomlook.io, with hackers threatening to release more if their demands are not met.

Initial reports suggest that the stolen data includes highly sensitive information such as social security numbers, passport scans, financial documents (including balance sheets and profit and loss reports), bank statements, tax forms, legal documents, NDAs, contracts, as well as diagrams and drawings of upcoming models. The LockBit hackers obtained this information through fraudulent means.**

2. The Allied Pilots Association (APA), a union representing more than 15,000 American Airlines employees, faced a ransomware attack that severely disrupted its digital systems on August 30 of this year. Fortunately, the impact was limited to the APA’s website, as the targeted data is stored separately from American Airlines’ servers. IT teams and security experts are working tirelessly to restore data from backups, and they are also collaborating with law enforcement agencies to ensure the removal of stolen data from the hackers’ servers without succumbing to ransom demands.

3. MR. Cooper, an insurance company based in Texas, recently suffered a cyber attack that temporarily halted its IT systems, including payment processing. The company promptly released a statement acknowledging the incident and stated that their IT teams are working around the clock to mitigate the risks.

Customers who were in the process of paying insurance premiums or accessing the company’s webpage for various purposes are advised to wait for further updates on the main webpage, as the company intends to extend the grace period due to the digital attack.

Cybersecurity Insiders has received information from its sources that the attack was a variant of ransomware. However, MR. Cooper is currently conducting an investigation and has promised to provide more details as soon as they become available.

The post Cyber Attack news headlines trending on Google appeared first on Cybersecurity Insiders.

Revolut that offers payment processing technology was targeted by a phishing attack recently, leading to data breach of thousands of customers from Lithuania and Europe. The company issued a press statement that only 0.3% of its customers became targets to the sophisticated attack that took place on its servers on Sept 10th of this year.

Estimates are in that about 32,000 customers might have become targets to the digital attacks that lead to their information steal.

Confirmed sources suggest the data breach occurred from a phishing attack that could have taken place in August this year.

Coming to the attack that took place on American Airlines, an official statement from the airliner says that a sophisticated digital attack resulted in the leak of details such as customer info, birthday info, mailing and email addresses, medical data, phone and driving licenses.

But the good news is that the attack and data breach took place in June 2022 and there is no evidence of misuse of stolen information till date.

Previously, a similar data leak took place on the servers of American Airlines in March 2021 and the business is apparently facing a lawsuit from a high-profile customer.

NOTE- Phishing is a kind of cyber attack where hackers try fraudulent communication methods such as SMS and emails to retrieve personal information from employees like login credentials and then use the stolen data to conduct identity theft. Using a multi-layer protection, and creating awareness among employees to never click on email and sms links sent by unknown senders is the only option to curtail such issues.

 

The post Phishing attacks on Revolut and American Airlines leads to data breached appeared first on Cybersecurity Insiders.