North American airlines targeted by cyberattacks
At least two North American airlines have been victims of criminal hackers recently as cybersecurity companies warn that a notorious cybercriminal group has been targeting the aviation industry.
Westjet and Hawaii Airlines both said in June statements that they are responding to cyberattacks.
American Airlines also experienced a tech issue on Friday, though it's unclear if it was related or caused in any way by hackers.
"A technology issue is affecting connectivity for some of our systems and we are working with our partners to fully resolve the issue," an American Airlines spokesperson said in a statement. "Though we are experiencing delays as a result, we have not canceled any flights at this time."
Cybersecurity companies that work directly with companies hit by hackers usually refrain from talking about specific victims, citing nondisclosure agreements. But both Google and Palo Alto Networks said Friday that they have observed a particularly effective cybercriminal group, nicknamed Scattered Spider by the cybersecurity industry, that tries to hack companies involved in aviation.
Scattered Spider is a loosely affiliated group of young, mostly English-speaking men who are extremely adept at sweet-talking their way into sensitive computer access at large companies. From there, they often hand that access to outside cybercriminals who install ransomware — malicious software that locks up computers, rendering them inoperable — and then demand an extortion payment.
The group has been tied to attacks on Las Vegas casinos in 2023 and British department stores earlier this year. After Google warned that Scattered Spider was targeting American retailers, a cyberattack hobbled a top Whole Foods supplier, leading to empty shelves across the country.
Charles Carmakal, the chief technology officer of Mandiant, Google's cloud security company, said in an emailed statement that it was tracking "multiple incidents in the airline and transportation sector" where Scattered Spider had broken in.
"We are still working on attribution and analysis, but given the habit of this actor to focus on a single sector we suggest that the industry take steps immediately to harden systems," he said.
Details on the effects of the attacks on airlines are still sparse.
A WestJet spokesperson told NBC News in an email that the company first noticed it had been hacked on June 13 and has made "significant progress" to resolve it. Hawaiian Airlines said in a Friday filing with the Securities and Exchange Commission that it discovered on Monday that it had been hacked and that "Flights are currently operating safely and as scheduled."
Neither company responded to questions about whether any flights had been canceled or delayed because of the attacks.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
25 minutes ago
Wimbledon 2025: Coco Gauff is just 21 but already thinking about what to do after tennis
LONDON -- To be clear, Coco Gauff didn't bring up the word 'star' during a recent interview with The Associated Press; the reporter did. So as Gauff began to answer a question about balancing her life as a professional athlete with her off-court interests, she caught herself repeating that term. 'I definitely didn't know how it would look like,' she began with a smile, 'before I got to be, I guess, a star — feels weird to call myself that — but I definitely did want to expand outside of tennis. Always. Since I was young.' She still is young, by just about any measure, and she is a really good tennis player — Gauff owns the Grand Slam titles and No. 2 ranking to prove it as she heads into Wimbledon, which begins Monday — but the 21-year-old American is also more than that. Someone unafraid to express her opinions about societal issues. Someone who connects with fans via social media. Someone who is the highest-paid female athlete in any sport, topping $30 million last year, according to with less than a third of that from prize money and most via deals with companies such as UPS, New Balance, Rolex and Barilla. Someone who recently launched her own management firm. And someone who wants to succeed in the business world long after she no longer swings a racket on tour. 'It's definitely something that I want to start to step up for post-career. Kind of start building that process, which is why I wanted to do it early. Because I didn't want to feel like I was playing catch-up at the end of my career,' said Gauff, who will face Dayana Yastremska in the first round at the All England Club on Tuesday. 'On the business side of things, it doesn't come as natural as tennis feels. I'm still learning, and I have a lot to learn about," Gauff said. "I've debated different things and what paths I wanted to take when it came to just stimulating my brain outside of the court, because I always knew that once I finished high school that I needed to put my brain into something else.' In a campaign announced this week by UPS, which first partnered with Gauff in 2023 before she won that year's U.S. Open, she connects with business coach Emma Grede — known for working with Kim Kardashian on Skims, and with Khloe Kardashian on Good American — to offer mentoring to three small-business owners. 'Coco plays a key role in helping us connect with those younger Gen-Z business owners — emerging or younger entrepreneurs,' Betsy Wilson, VP of digital marketing and brand activation at UPS, said in a phone interview. 'Obviously, she's very relevant in social media and in culture, and working with Coco helps us really connect with that younger group.' While Grede helped the entrepreneurs, Gauff also got the opportunity to pick up tips. 'It's really cool to learn from someone like her,' Gauff said. 'Whenever I feel like I'm ready to make that leap, I can definitely reach out to her for advice and things like that. ... This will help me right now and definitely in the long term.'
Forbes
27 minutes ago
- Forbes
Google Chrome Updates To Stop On August 5 For 300 Million Android Users
Google confirms it will stop updateng Chrome for 300 million Android users in August. Update, June 28, 2025: This story, originally published on June 27, has been updated with advice from Google on how to check and update your Android version in response to the news that Chrome will stop getting security updates in August for users of Android 8 and 9. If there is one thing you can guarantee in life, other than death and taxes, it's that Google will update the Chrome web browser with alarming frequency to fight off attacks using newly discovered security vulnerabilities. That guarantee will disappear for an estimated 300 million Android users starting August 5. Here's what you need to know. 300 Million Android Devices To Not Longer Get Chrome Security Updates According to the latest estimates, 4% of the Android user base of 3.3 billion still use Android 8 and another 5.8% use Android 9. While the percentages might seem insignificant in the overall scheme of things, that's a combined total of more than 300 million devices. It's also 300 million devices that will no longer benefit from security updates for the Google Chrome browser from August 5. Ellen T, a Chrome support manager at Google, has now officially confirmed in a Google Chrome community posting, that 'Chrome 138 is the last version of Chrome that will support Android 8.0 and Android 9.0.' With Chrome 139 being expected to arrive on August 5, and requiring devices to be running Android 10.0 or later, this means that you will 'need to ensure your device is running Android 10.0 or later to continue receiving future Chrome releases,' Ellen T said. How To Check And Update Your Version Of Android To Ensure Chrome Security Updates Continue Ellen T has stated that Google encourages all impacted users 'to move to a supported Android 10.0 version (or newer) to ensure you continue to receive the latest security updates and Chrome features.' Which is great, but how easy is that going to be in the real world? Google itself, of course, has a support page dedicated to just that question, explaining how to check for and update the version of Android for your device, be it a smartphone or tablet. 'You can find your device's Android version number, security update level, and Google Play system level in your Settings app,' Google said, adding that you will also get notifications when any operating system updates are available for your specific device. Here are the step-by-step instructions provided by Google: To check which Android version your device is running currently: To check for the latest Android operating system updates for your device: Doing Nothing Is Not An Option – Chrome Security Updates Are Critical It's important to note that older versions of the Google Chrome web browser app will continue to work just fine on older Android smartphones and tablets. Assuming that your definition of just fine includes being open to attack by anyone armed with an exploit for the latest security vulnerabilities. Indeed, as time passes, and those security vulnerabilities become common knowledge, with exploits exchanged in criminal forums online, the threat will only increase for any users who have not either updated to a more recent operating system or switched to a different browser app. You know what to do, and the correct answer is most certainly not nothing. You have been warned.
Forbes
an hour ago
- Forbes
FBI Warning Issued As 2FA Bypass Attacks Surge — Act Now
The FBI issues Scattered Spider attack warning. When the Federal Bureau of Investigation issues a cybersecurity alert, you would be well advised to pay attention and take action. Whether that's involving malicious SMS messages, AI-powered phishing attacks, or, as I recently reported, the skyrocketing number of ransomware threats. And ransomware is the subject of this latest, critical, warning from the FBI. This time involving the Scattered Spider threat group which has made headlines after taking responsibility for multiple retail sector attacks including that against Marks & Spencer in the U.K. which is estimated to have cost the high street chain at least $600 million. Now the group is targeting the airline industry, the FBI has warned, both directly and through the entire supply chain. Here's what you need to know. FBI Confirms Scattered Spider Attacks Targeting Transportation A June 26 report from ransomware analysts at Halcyon warned that there were 'indications that Scattered Spider is also now targeting the Food, Manufacturing, and Transportation (particularly Aviation) sectors in the US.' This has now been confirmed by the FBI which provided a statement to me by email that said: 'The FBI has recently observed the cybercriminal group Scattered Spider expanding its targeting to include the airline sector.' The statement continued to confirm that the ransomware group is using the same methods during this surge of attacks into new sectors, namely 'social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access.' Specifically, Scattered Spider looks to bypass mutli-factor authentication, commonly referred to as MFA or 2FA, by using various methods to get those help desks to 'add unauthorized MFA devices to compromised accounts.' Scattered Spider has been on the FBI radar for a number of years, with a joint cybersecurity advisory alongside the Cybersecurity and Infrastructure Security Agency published in 2023 in response to what it described as 'activity by Scattered Spider threat actors against the commercial facilities sectors and subsectors.' The FBI told me that it is currently actively working with aviation and industry partners 'to address this activity and assist victims,' and urged anyone who thinks their organization may have been targeted to contact their local FBI office. In the meantime, beware of anyone asking for unauthorized 2FA devices to be added to accounts and follow established security processes and procedures to the letter, no matter what the person making the request may say.
