Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

Airline Chief Casts Doubt on Plane Hacking Claim

The chief executive of United Airlines cast doubt Tuesday on claims by a security researcher about hacking the controls of a jetliner from its entertainment system.

“There are clear firewalls between a Wi-Fi system and any kind of control,” United president and CEO Jeff Smisek told a US Senate hearing.

The chief executive of United Airlines cast doubt Tuesday on claims by a security researcher about hacking the controls of a jetliner from its entertainment system.

“There are clear firewalls between a Wi-Fi system and any kind of control,” United president and CEO Jeff Smisek told a US Senate hearing.

Smisek said however the matter was “of great concern to us” and that the carrier was cooperating with an FBI investigation into the matter.

A story circulating in security circles in recent days is based on a claim by researcher Chris Roberts of One World Labs that he briefly took control of a United aircraft from his passenger seat by hacking into the in-flight entertainment network.

An FBI warrant shows the federal law enforcement agency carried out a search of Roberts’ computer and other materials after his claim on social media that he was able to take control of certain flight functions on a United flight on April 15 after hacking the entertainment system.

Smisek told the Senate panel of the alleged hacking, “We are unaware of whether or not this is possible (but) the original equipment manufacturers, from at least what I understand, have stated this is not possible today.”

But a congressional report last month said hackers could exploit in-flight entertainment systems to fatally sabotage the cockpit electronics of a new generation of airliners connected to the Internet.

In-flight cybersecurity is “an increasingly important issue” that the Federal Aviation Administration (FAA) is just starting to address in earnest, said the audit and investigative arm of the US Congress.

Advertisement. Scroll to continue reading.

At Tuesday’s hearing, FAA chief Michael Huerta said the agency was cooperating with the FBI and examining the potential vulnerabilities.

“We’re working closely with the manufacturers to understand how the threat — how the threat morphs, how it evolves, changes and how do we stay ahead of it by having, as we’ve always had, many layers of security and control over access to critical systems within the aircraft,” he said.

Related: Researcher Detained Over Airplane Hacking Tweet

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Vulnerabilities

Less than a week after announcing that it would suspended service indefinitely due to a conflict with an (at the time) unnamed security researcher...

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...

IoT Security

A group of seven security researchers have discovered numerous vulnerabilities in vehicles from 16 car makers, including bugs that allowed them to control car...

Vulnerabilities

A researcher at IOActive discovered that home security systems from SimpliSafe are plagued by a vulnerability that allows tech savvy burglars to remotely disable...

Risk Management

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Vulnerabilities

Patch Tuesday: Microsoft warns vulnerability (CVE-2023-23397) could lead to exploitation before an email is viewed in the Preview Pane.

Vulnerabilities

The latest Chrome update brings patches for eight vulnerabilities, including seven reported by external researchers.