Rampant cybercriminal group targets US airlines
The hacking hasn't affected airline safety, but it has top cyber executives at major airlines across the United States on alert because of the hacking suspects: A network of young cybercriminals called 'Scattered Spider' who are known for their aggressive efforts to extort or embarrass their victims.
It's a fresh headache for the travel industry as the busy summer travel season kicks into high gear. This is now the third major US business sector in the last two months, after insurance and retail, to face a flurry of cyberattacks tied to the criminal group.
The hackers target big companies and their IT contractors, 'which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk,' the FBI said Friday night in a statement that named Scattered Spider as the perpetrator of the airline hacks. 'Once inside (a victim's network), Scattered Spider actors steal sensitive data for extortion and often deploy ransomware,' the FBI said.
The FBI, the statement continued, 'is actively working with aviation and industry partners to address this activity and assist victims.'
Hawaiian Airlines and Canada's WestJet confirmed this week that they were still assessing the fallout from recent cyberattacks, though the airlines did not name the perpetrators. More victims in the aviation industry could come forward, sources briefed on the investigation said.
WestJet's issues began two weeks ago, when the airline said it was responding to a 'cybersecurity incident' that was affecting access 'to some services and software systems,' including its app for customers. Both WestJet and Hawaiian Airlines said their operations were unaffected by the hacks.
The lack of impact on operations at the airlines is 'likely a sign of good internal network separations or good business continuity and resiliency planning,' said Aakin Patel, the former chief information security officer of Las Vegas' main airport.
It is not just the airlines themselves, but other 'segments of the aviation ecosystem' that are seeing increased cyberattacks, according to Jeffey Troy, the president of the Aviation ISAC, an industry group for sharing cyber threats. 'Our members are keenly alert to attacks from financially motivated attackers and collateral impacts emanating out of geo-political tensions around the world,' Troy said in a statement to CNN.
The fine margins for error in the airline industry were on display Friday, when a separate IT outage, apparently unrelated to malicious cyber activity, caused delays for some American Airlines passengers.
The Scattered Spider hacks have mobilized people across the industry to respond. In-house cybersecurity experts at major airlines have been closely monitoring the situation, sources familiar with the response told CNN, while cybersecurity firms such as Google-owned Mandiant are helping with the recovery and urging airlines to secure their customer service call centers.
One of Scattered Spiders' preferred methods of infiltrating corporations is calling up help desks and pretending to be employees or customers. The technique has been highly effective for hackers to gain access to the networks of big companies.
'Airlines rely heavily on call centers for a lot of their support needs,' Patel told CNN, making them 'a likely target for groups like this.'
Scattered Spider gained attention in September 2023 when they were linked to a pair of multimillion-dollar hacks on Las Vegas casinos and hotels MGM Resorts and Caesars Entertainment. The hackers tend to pick one sector to target for weeks on end. Earlier this month, they were the suspect in a hack of insurance giant Aflac that potentially stole Social Security numbers, insurance claims and health information. Before that, it was the retail sector: The hackers, according to an internal memo obtained by CNN, targeted Ahold Delhaize USA, which has the same parent company as the Giant and Food Lion grocery chains.
'The actor's core tactics, techniques, and procedures have remained consistent,' Mandiant chief technology officer Charles Carmakal said Friday in a statement, and that it 'is aware of multiple incidents in the airline and transportation sector' that resemble the operations of Scattered Spider.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Associated Press
19 minutes ago
- Associated Press
US won't send some weapons pledged to Ukraine following a Pentagon review of military assistance
WASHINGTON (AP) — The U.S. is halting some shipments of air defense missiles and other munitions to Ukraine amid concerns that its own stockpiles of such supplies have declined too much, officials said Tuesday. The munitions were previously promised to Ukraine for use during its ongoing war with Russia under the Biden administration. But the pause reflects a new set of priorities under President Donald Trump. 'This decision was made to put America's interests first following a DOD review of our nation's military support and assistance to other countries across the globe,' White House spokesperson Anna Kelly said in a statement. 'The strength of the United States Armed Forces remains unquestioned — just ask Iran.' The Pentagon review determined that stocks were too low on some items previously pledged, so pending shipments of some items won't be sent, according to a U.S. official, who spoke on condition of anonymity to provide information that has not yet been made public. To date, the U.S. has provided Ukraine more than $66 billion worth of weapons and military assistance since Russia invaded in February 2022.
New York Times
23 minutes ago
- New York Times
Senators GM Steve Staios doubles down on core with quiet start to free agency
OTTAWA — The Ottawa Senators emerged from the opening day of NHL free agency having satisfied two major items on their offseason list. The first? Establishing and maintaining their salary cap flexibility, with over $5 million in remaining space, per PuckPedia. The second? Signing Lars Eller as their fourth-line centre and plugging a hole at the bottom of the forward corps. Advertisement A much quieter July 1 than last year, when they acquired Nick Jensen, Michael Amadio, Noah Gregor and David Perron. 'It was comforting going into this year, where we were looking for one specific area that if we could improve in it, we would,' Senators GM Steve Staios said Tuesday afternoon. 'We had our sights set on a certain individual, and it was Lars. If not, then we would've looked at other avenues to be able to do it. But we're excited to have him.' Staios spoke to the media moments after reports surfaced of Eller signing a one-year deal with the Senators. The deal has performance bonuses that will bring the max value of the contract to $2.25 million. It was Ottawa's biggest signing of the day. Staios made subtle tweaks to the roster as he said he would over the weekend, bringing back Nick Cousins and adding forward Olle Lycksell as depth. That came after the Sens re-signed Claude Giroux and added Jordan Spence via trade. Save for organizational moves in Belleville, that might be the full extent of Ottawa's shopping this offseason. Unless something drastic changes. 'I guess we'll see,' Staios said. 'Most likely not. We feel comfortable with where we are.' The Senators' relative lack of activity in recent days, at least compared to most other teams around the league, speaks to Staios' belief that his core can continue to progress as other rival teams take steps to either maintain their foothold in the playoffs or catch up. The pressure is on the roster to take that next step, mostly as currently constructed. 'We feel like we have a good plan in place for this group,' Staios said. '(We're) mindful of this group and their growth and their development. And I think it can't emphasize that enough. They are taking hold of it. The manager is there to support it and to make sure that you could add to where you need to add. The emphasis is on this group. Advertisement 'So, making additions is strategic to this group. I don't think that they need so much as the support around them to continue to grow and develop together.' It's consistent with how Staios has felt about the Senators at numerous times this season, even as concerns about their ability to score at five-on-five grew. Staios eventually addressed those concerns by acquiring Dylan Cozens and Fabian Zetterlund at the deadline, part of the overall changes in preparation for next year. 'It's been a little bit of a slow roll,' Staios said. But those changes come as his Atlantic Division foes have experienced significant movement. Yes, there's the Mitch Marner thing. But we're not talking about that here. And granted, it was difficult for many around the hockey world to keep track of the NHL's free agent news on July 1 as it came fast and furious. Even Staios wasn't up to date, for good reason. 'I haven't really seen what the other teams have done, and we're focused on what we're doing here, and we don't get distracted by what other teams are doing,' Staios said. Montreal traded for Noah Dobson from the New York Islanders over the weekend and added Zachary Bolduc and Sammy Blais for their fourth line. Detroit brought on John Gibson in the hopes of improving their goaltending. Boston acquired Viktor Arvidsson for a mid-round draft pick, in a type of deal that might have suited Staios, before adding Tanner Jeannot for their fourth line and signing Morgan Geekie long-term. Those are all teams that might fight Ottawa for a playoff spot come next April. The division still has Florida, Toronto and Tampa Bay at the top. But we don't expect that much of a drop-off for those three teams, especially since they each still possess elite players who can help power them through the regular season and beyond. Not to mention, each of those teams ended the season with better-ranked offences than Ottawa, whether overall or at five-on-five. Only two other Atlantic Division teams, Detroit and Boston, finished the regular season with fewer goals than Ottawa. Advertisement If the Senators continue to experience offensive woes, we'll go back to the offseason as an opportunity lost for Staios to improve his team. Signing Giroux back is a boost for the core as they lean on veterans in their transition. Expecting Zetterlund to produce more than he did in his handful of games with Ottawa could be a good bet. But that need for a top-six scorer still lingers. If that opportunity comes to accommodate said scorer, some cap space remains. The Senators won't have to worry about yo-yoing players back and forth from the NHL to the AHL in the name of saving money, as they did with Adam Gaudette, who will spend the next two seasons in San Jose. Having that $5 million plus in cap space is still a victory for the Senators on an otherwise quiet day. But if the right deal comes along, it's something they can tap into. 'Cap space is important moving forward,' Staios said. For now, Staios seems content with his core. The next step could even be a Shane Pinto extension, as Staios confirmed negotiations would be on the horizon. Staios' moves and words continue to affirm his belief in the core he's assembled. As was the case throughout the regular season, it's on the Senators to prove him right. (Top photo of the Ottawa Senators: Chris Tanouye / Freestyle Photography / Getty Images)
CNN
23 minutes ago
- CNN
Inside the courtroom during ‘Diddy' trial partial verdict drama
CNN's Kara Scannell explains what it was like inside the courtroom during Sean "Diddy" Combs' trial when the jury said they had reached a partial verdict, but were unable to reach a verdict on one of the five counts. The judge instructed them to continue deliberating.
