![]()
Continental Aerospace Technologies was recently hit by a cyberattack, affecting daily operations in Alabama. Continental released a statement on its website about the incident, letting customers know it was engaged with a team of experts working to resolve the issues quickly and operations are expected to resume soon. This is the latest cyber incident in the aviation industry and the number of attacks may be on the rise.RELATED STORY:World's largest aircraft leasing company hit with ransomware attack, suffers data breachAs a global leader in general aviation, Continental offers a range of gasoline and jet-A engines as well as avionics services. The company was formed in 1929 by the automobile engine manufacturer Continental Motors Company and introduced its first aircraft engine that year. Its early engines were used to power classic aircraft like the Taylor Cub and Piper Cub. At the start of WWII, Continental began building aircraft engines for British and American Tanks. Through the decades, the company built a strong reputation for building reliable aircraft engines, powering aircraft like the Piper PA-46, Bell 208, Diamond DA40, Cirrus SR22, Cessna 206 and Beechcraft Bonanza. The recent cyberattack has impacted operations at headquarters in Mobile, Alabama. The company has not released additional details into what type of incident occurred and how exactly it has impacted operations.Recent cyberattacks in the industry
This is the latest in an increase in cyber or technology-related incidents in the industry, from ransomware attacks to GPS spoofing. On Jan. 22 Aercap Holdings, the world's largest aircraft leasing company, notified the SEC that it experienced a ransomware attack on Jan. 17 and lost a terabyte of sensitive information to an unknown hacker. The ransomware group was identified by online groups as Slug. Slug listed Aercap as its first public target, threatening to release data over two weeks without an agreement. The aviation sector was hit by multiple cyberattacks in 2023, including Aercap's customers Air Canada in September 2023 and Kenya Airways on Jan. 8. Boeing was hit with an attack in November 2023, as was Japan Aviation Electronics. All companies were hit by different ransomware groups.
Cyberattacks on the rise in the aviation sector
The ICAO has warned of the increase in cyberattacks worldwide. As the world begins to rely more heavily on global digital infrastructure, information secured online is becoming more vulnerable to attacks. According to TechForce, the rapid integration of technology in the aviation industry, specifically those to enhance operational efficiency and the passenger experience, has brought with it an increase in cyberattacks. TechForce reported that cyberattacks in the aviation sector worldwide surged by 24 percent in the first half of 2023. The ransomware attacks on supply chain players have seen a more extreme rise, with an increase of as much as 600 percent since the previous year.
Avionics International reported in June 2023 that a recent survey revealed a concerning surge of cyber threats within critical national infrastructure organizations, like the transport and aviation sectors. The UK-based cybersecurity services company Bridewell told Avionics International that when economic uncertainties are looming, many organizations cut the cybersecurity budget, exacerbating the already present threat. Bridewell's Principal Lead Consultant, Chase Richardson, said there has been a reduction in cybersecurity budgets across the industry in the past 12 to 18 months. But as organizations are spending less on cybersecurity as a response to economic uncertainty, cyberattacks are being orchestrated due to the same fear of economic conditions.
Bridewell's survey found at least two dozen ransomware-related incidents in the aviation industry alone, by June 2023, but suspected the number was much higher since many companies do not want to admit when they've faced these attacks. Richardson also stressed to Avionics International that another factor in the increase in attacks is the influx of vendors in the industry, increasing risk exposure. Security Boulevard said aviation's digital ecosystem is built on a mix of old and new technologies with varying degrees of cybersecurity, and this diversity can create weak points for cyber criminals to exploit. The outlet continued to say that some of the most pressing cyber threats in the industry are data breaches, ransomware attacks, supply chain attacks, insider threats and phishing.
Outdated technology
Outdated systems are also particularly vulnerable to attacks. In January 2023 the U.S. saw the first nationwide grounding since 9/11 after the FAA's NOTAM system failed. After the failure, it was discovered the decades-old system failed due to human error but revealed the desperate need to modernize the 30-year-old infrastructure. The modernization of the NOTAM system was a hot topic at the start of 2023, along with the increase in runway incursions. Congress also introduced the NOTAM Improvement Act of 2023 to improve the outdated system.
Attacks on technology
As the industry continues to rely heavily on technology and innovation, cybersecurity will remain a growing concern. In parts of the Middle East flight crews have been hit by GPS jamming or spoofing, which can interrupt signals or cause critical nav failures while en route. GPS spoofing occurs when someone uses a radio transmitter to send a false GPS signal to a receiver antenna to counter the real GPS satellite signal. Some planes have inadvertently flown into hostile areas without clearance and others have lost everything related to Nav and IRS. Pilots operating in areas with known GPS spoofing events can revert to traditional navigation systems.RELATED STORIES:EASA, IATA partner to counter GPS spoofing, jamming threatGPS spoofing attacks continue across Middle East, grad student identifies sourceReports of GPS spoofing in Middle East rising, FAA issues risk warningCongress requests FAA task force to modernize NOTAMTime for a new NOTAM? The first nationwide ground stop since 9/11 shows room for improvement
"The recent opensource reporting regarding spoofing incidents, if confirmed, would pose increased safety of flight risks, due to potential loss of aircraft situational awareness and increased pilot and regional air traffic control (ATC) workload issues, which can lead to potential accidents and/or loss of life," the FAA said. "FAA recommends that U.S. civil air operators transiting ORBB and UBBA monitor regional NOTAMs, put additional emphasis on maintaining continuous communications with appropriate air traffic control authorities while monitoring aircraft equipment performance closely for any discrepancies or anomalies, and to be prepared to operate without GPS navigational systems."
Cyberattacks can not only release sensitive data like customer information or plans but also disrupt daily operations. The sensitive data could include payroll and applicant data, customer names and information. As the industry continues to rely more heavily on digital infrastructure and technology, cybersecurity is crucial. As the number of cyber-related incidents continues to grow in the aviation industry, companies should remain vigilant.
Continental has not posted any additional information about what it describes as a "cyber incident" on its website or social channels.