A cybercriminal group known as Scattered Spider has set its sights on the airline industry in North America. The group, known for hacking into corporate IT systems and holding sensitive information for ransom, has managed to reach two major North American airlines: Canada’s WestJet and Hawaiian Airlines. Both airlines did not report any disruptions to their operations.
These changes have left cybersecurity professionals on high alert as they aim to protect their organizations and the sensitive information they hold. In the midst of these heightened concerns, American Airlines reported an IT problem that delayed flights across its network. Though not related to Scattered Spider, it has still contributed to concerns over the wellbeing of airline IT systems.
Scattered Spider Strikes Again
Scattered Spider is a group of young adult and teen hackers, and they seem to have turned their attention to North American carriers, according to CNN Business. Two major airlines reported that the organization successfully breached their computer systems: WestJet and Hawaiian Airlines. As a result, airlines have been on high alert in an attempt to protect sensitive information they have about their customers.
The risk does not end with airlines. In fact, hackers often threaten IT contractors of their targets, which means a variety of companies that have clients in the airline industry might also be at risk of an attack. Luckily, no operational disruptions were reported by Hawaiian or WestJet, aiding the two airlines as they operate during a peak time for air travel. Hawaiian is also currently integrating its operations with Alaska Airlines, making it a particularly high-stakes time in the company’s history.
Aakin Patel, former chief information security officer for Harry Reid International Airport, explained that the lack of disruptions is likely a result of good practices within the two companies. When speaking to CNN Business, he said:
“[the lack of disruptions are] likely a sign of good internal network separations or good business continuity and resiliency planning.”
Scattered Spider Has A History Of Extortion
Though it seems the airline industry is the latest target of Scattered Spider, it certainly is not the first. The group of cybercriminals have a history of hacking into the IT systems of major corporations and holding their sensitive information for ransom. Some of its more high-profile victims are big names in the entertainment and hospitality industries. In that regard, targeting the airline industry is somewhat consistent with their past actions.
In September 2023, the group was linked to a massive cyberattack on two major casinos in Las Vegas: MGM Resorts and Caesars Entertainment. The attacks were large, involving millions of dollars. Prior to this, the group was suspected of attacking insurance company Aflac, potentially stealing sensitive information like Social Security numbers, health information, and insurance claims. Prior to that, the group targeted the retail industry, namely Ahold Delhaize USA.
Related
Flights Uninterrupted Following Hawaiian Airlines Cyberattack
The recent incident adds to a growing list of cybersecurity events targeting the aviation sector.
As airlines focus on keeping sensitive information secure, American Airlines has encountered technological issues of its own, according to Fox Business. Unlike the cyberattacks on Hawaiian and WestJet, however, American’s challenges impacted the carrier’s operations. Many passengers reported long delays due to the technological snag that occurred last Friday.
The airline told media outlets that a technology issue harmed connectivity for some of its systems, and that it worked with partners to restore everything to operational condition. Computer-related disruptions are not new to the airline industry. Southwest Airlines faced a massive breakdown during the winter of 2022, and last summer, major airlines across the world suffered from the Crowdstrike outage.
Airlines clearly must invest in proper technological infrastructure and adequate protection to ensure safe and reliable operations. The following weeks could potentially test airline cybersecurity as they become targets for Scattered Spider. But with luck, no operational disruptions will come as a result of the hackers.
