Risks to Aviation 'Grossly Inaccurate,' says ICAO

Kacy Zurkus | March 04, 2019

Risks to Aviation 'Grossly Inaccurate,' says ICAO
A 2016 cyber-attack that resulted in a major data breach for the International Civil Aviation Organization (ICAO), believed to be the work of a hacker associated with Emissary Panda, should have been prevented, according to the CBC. Documents resulting from an extensive investigation allegedly revealed that ICAO attempted to cover up the way flaws in security strategies were handled. "The documents obtained by CBC, which are assessment reports that include emails and an 'information security incidents summary,' show that a cyber-intelligence analyst working for an independent agency known as the Aviation Information Sharing and Analysis Center first flagged the cyber-attack on November 22, 2016." The story also alleged that based on these documents, key members of the team of this global aviation standard-setting body who "should have prevented the attack tried to cover up how badly it was mishandled." However, a spokesperson from ICAO said in a statement, "The purported gravity of the malware found on our servers in 2016 has been greatly exaggerated in the CBC account. ICAO regrets many of the erroneous interpretations and conclusions presented in today’s CBC article surrounding a three-year-old data security incident we experienced.

Spotlight

Malware, short for malicious or malevolent software, is software used or programmed by attackers to disrupt computer operations, gather sensitive information, or gain access to private computer systems. As mobile devices become more common, cybercriminals see them as having huge profit potential, an


Other News
SOFTWARE SECURITY

IPKeys Power Partners Announces New Grid Cyber Security Breakthrough

IPKeys | September 09, 2021

IPKeys Power Partners, the leading cybersecurity, cyber compliance, and smart grid technology company, announced today the release of its groundbreaking SigmaFlow Beacon platform to provide utilities, generators, and grid operators a simple, unified solution for cybersecurity monitoring and compliance requirements. The SigmaFlow Beacon platform is built specifically to help organizations align with North American Electric Reliability Corp. (NERC) compliance mandates. It provides NERC registered entities with a single solution to advance, simplify and improve existing cybersecurity and monitoring requirements. "We are pleased to provide utilities, generators...

Read More

PLATFORM SECURITY

Stellar Cyber Partners with SonicWall for Advanced Prevention, Response

Stellar | September 08, 2021

Stellar Cyber, the innovator of Open XDR, the only intelligent, next-gen security operations platform, announced today that it has joined the SonicWall SecureFirst Partner Program to integrate Stellar Cyber’s advanced threat detection and response with SonicWall’s award-winning prevention technology. This combination of prevention, detection and response provides an outstanding platform for enterprises that want to stop many attacks before they occur while detecting and remediating complex threats. “As a customer of both SonicWall and Stellar Cyber, it’s great to see these two solutions working together,” said Michael Crean, CEO of Solutions Grant...

Read More

SOFTWARE SECURITY

Minimize Cybersecurity Risk and Relieve Overstretched Security Teams with Trend Micro Support and Service Bundles

Trend Micro Incorporated | September 07, 2021

Trend Micro Incorporated a global cybersecurity leader, today announced the launch of Trend Micro Service One, consolidating its managed services to optimize enterprise threat management. The new services bundles, which can include premium support, an early warning service, Managed XDR and incident response, help customers prevent, detect and respond to cyber threats faster by supplementing internal resources. The prevalence of cybersecurity threats and the dynamic threat landscape leave businesses vulnerable and put security experts in high demand to triage and investigate incidents. According to Aaron Sherrill, Senior Research Analyst at 451 Research, part of ...

Read More

DATA SECURITY

Achieve Partners Backs Cybersecurity Platform to Tackle Global Talent Shortage

Achieve Partners | September 06, 2021

Achieve Partners today announced the acquisition of Metmox, a leading Managed Security Service Provider (MSSP) to Fortune 500 companies. The acquisition is the latest in Achieve's new fund, which builds apprenticeship programs that provide on-the-job skills training and connections to career pathways in high-growth industries. "While cyber threats are growing in number and sophistication amid increasing levels of remote work and cloud adaption, the global security workforce is struggling to keep up," said Srikanth Parepally, CEO of Metmox. "Achieve's acquisition of Metmox is about building new pipelines of talent that can help America's most importan...

Read More

Spotlight

Malware, short for malicious or malevolent software, is software used or programmed by attackers to disrupt computer operations, gather sensitive information, or gain access to private computer systems. As mobile devices become more common, cybercriminals see them as having huge profit potential, an

Resources

Events