Photo: Via Satellite/Freepik.com/Wavebreak Media

Aviation is a key pillar of the global economy, linking millions of people every day. However, the growing reliance on digital technology in the sector has brought about significant cybersecurity challenges. These can jeopardize security, disrupt operations, and undermine public trust in an industry where cybersecurity is not just for safeguarding essential systems, but also for protecting passenger safety and sensitive data.

Modern aircraft are equipped with advanced avionics, onboard sensors, and real-time data-sharing capabilities, which enhance safety and operational efficiency but also expand the attack surface for cyber threats.

Additionally, the use of both operational technology (OT) and IoT systems are crucial to ensuring passenger safety. IoT is used to get real-time weather forecasts and analytics from on-ground operations or mid-air that can ensure a turbulent-free journey. Meanwhile, OT plays a pivotal role in airport operations, ground support, baggage handling systems and overall passenger experience

[This article was published exclusively for Space Security Sentinel, a new monthly newsletter at the intersection of cybersecurity and space. Subscribe to the newsletter here.]

This column looks at how cyberattacks have risen in aviation, reasons why robust cybersecurity is the need of the hour, vulnerabilities in the industry and steps that aviation organizations can embrace to boost their cybersecurity strategy.

Cyberattacks in Aviation

Cybersecurity in aviation is crucial for protecting passenger safety; safeguarding sensitive data; ensuring operational continuity; complying with regulatory standards; and addressing the insufficient security in legacy OT systems.

Yet, the aviation industry has seen a marked rise in cyberattacks in the last five years. Data breaches, ransomware and DDOS attacks have intensified.

A successful ransomware attack could halt flight operations, cause delays, and expose sensitive data, resulting in significant financial losses and reputational harm. It could also endanger passenger safety by compromising critical systems such as aircraft maintenance, GPS and navigation systems.

In 2023, a global airline leasing company was targeted by the Slug ransomware group, which highlighted the spread and scale of ransomware threats in the sector. We have also seen distributed denial of service (DDoS) attacks disrupting major airline booking systems, taking down airline websites, preventing passengers from booking tickets, checking in, and accessing their flight information.

Supply chain vulnerabilities are also being exploited, posing serious risks to critical operations in the aviation industry. With aviation relying heavily on these interconnected networks, any incidents emphasize the urgent need to fortify supply chain security to protect against escalating threats.

These are some of the critical functions that, if attacked, can cause severe disruption (and even failure) in operations.

Air traffic control systems: The systems that control aircraft in the sky rely heavily on digital communications and real-time data exchanges for navigation communications and other critical functions. A cyberattack, which leads to unauthorized access to these systems, could disrupt flight schedules and compromise passenger safety.

Passenger data: Airlines and airports handle large amounts of personal data, including passport information, payment data, and contact details. Data breaches can lead to identity theft and financial loss, putting both passengers and employees at risk.

Connected devices: IoT devices like smart sensors and monitoring systems are increasingly being used in airports (and smart airports) and must be secured to prevent unauthorized access and maintain the integrity of interconnected systems.

4 Ways to Improve Cybersecurity in Aviation:

To address the wide range of cyberthreats, the aviation industry employs several cybersecurity strategies, including:

1. Employee training and awareness: Human error continues to be a leading factor in security breaches. To counter this, aviation organizations must invest in comprehensive cybersecurity training for their employees that focus on changing mindsets and behaviours.

1. Network security: Securing the networks that link the many components of the aviation system is absolutely critical. Robust network security measures — like firewalls, encryption, and intrusion detection systems — play a vital role in protecting data transmissions and blocking unauthorized access. These defences ensure the integrity and safety of the aviation ecosystem, safeguarding it against potential cyberthreats.

1. Access control and identity management: Restricting access to sensitive systems and data is a fundamental pillar of aviation cybersecurity. By enforcing robust access control policies and deploying advanced identity management solutions, organizations can ensure critical systems and information are accessible only to authorized personnel, enhancing overall security and resilience.

1. Real-time monitoring and incident response: Real-time monitoring of digital aviation systems is key to identifying potential security threats early. Equally important are incident response plans, which enable rapid action to address and contain cyber incidents. In an industry where downtime carries significant costs, a swift and efficient response is not just important, it’s essential.

Cybersecurity in aviation is more than a mere technical issue — it is a critical safeguard that enables public safety and trust.

As cyberthreats evolve in complexity and frequency, stakeholders across aviation sector must prioritize proactive defences, international collaboration, and the integration of advanced security technologies. From securing passenger data to safeguarding operational systems, every layer of aviation must be fortified to ensure safety and trust.

When the sky is the limit, opportunities abound, as do technology innovations. As technology continues to reshape the aviation industry, protecting these digital assets will become ever more critical. By prioritizing cybersecurity from the start, the global aviation sector can ensure safe, reliable, and efficient air travel for years to come.

Haroon Malik, FCIIiS, Head of OT Security Advisory, Northern Europe, Eviden, Atos Group. He is a fellow of the Chartered Institute of Information Security