Yazılar

UN aviation summit opens amid cyber threats, climate disputes, and geopolitical strain

/in /tarafından

The UN’s International Civil Aviation Organization (ICAO) opened its triennial assembly in Montreal on Tuesday under the weight of cybersecurity threats, climate policy disputes, and global political tensions. The gathering comes as airports across Europe are still reeling from recent cyberattacks that crippled automated check-in systems, highlighting the vulnerability of aviation technology.

ICAO Council President Salvatore Sciacchitano warned that the aviation system, currently designed for 4.6 billion passengers a year, will need urgent transformation to handle projected traffic of nearly 14 billion passengers by 2050. Global passenger demand is expected to reach 7.2 billion by 2035, requiring as many as 670,000 new pilots by 2043.

The United States pressed ICAO to prioritize safety and security over environmental goals, with Transportation Secretary Sean Duffy arguing the green agenda should not overshadow immediate risks. Still, many delegates defended ICAO’s climate targets, even as airline trade group IATA admitted the industry is unlikely to meet its 2030 goal of cutting emissions by 5%. IATA chief Willie Walsh acknowledged financial challenges but stressed airlines remain committed to net-zero transitions.

Geopolitical rifts also loomed large. ICAO has censured Russia and North Korea for actions that disrupted international aviation systems. Moscow is campaigning to regain its council seat lost in 2022 and pushing for an easing of aviation boycotts, while North Korea accused ICAO of double standards in a complaint against South Korea.

Meanwhile, countries are grappling with labor shortages across aviation. India called for a global hiring code to prevent pilot “poaching,” and Brazil, facing a shortfall of mechanics, is working to boost diversity in the workforce. Only 3% of Brazilian pilots are women, despite women making up more than half of the population.

The summit runs through October 3 and will test whether ICAO can maintain its consensus-driven tradition of cooperation amid today’s overlapping crises of cyber insecurity, climate change, and geopolitical rivalry.

Airport chaos underscores growing trend of high-profile ransomware attacks

/in /tarafından

A weekend ransomware attack that crippled airport check-in systems across Europe has drawn attention to a new trend in cybercrime: hackers are increasingly targeting high-profile companies and infrastructure for both larger payouts and reputational clout, cybersecurity experts said.

The European Union’s cybersecurity agency ENISA confirmed on Monday that the attack on Collins Aerospace, a unit of RTX, was ransomware-based. The hack disrupted check-in and baggage systems since Friday, grounding flights and stranding thousands of passengers. The attackers’ identity remains unknown, with no ransomware group yet claiming responsibility on dark web leak sites.

Rafe Pilling, Director of Threat Intelligence at Sophos, noted that while most ransomware attacks remain financially motivated, a subset of operations is now engineered for maximum disruption: “They are becoming more visible and more ambitious.”

The strategy is not new but appears to be escalating. In April, the group Scattered Spider was linked to an attack on retailer Marks & Spencer that halted online orders for weeks. Britain’s National Crime Agency also charged two teenagers last week over a 2024 attack on Transport for London, tied to the same group. The FBI estimates Scattered Spider has been involved in around 120 network intrusions and netted $115 million in ransom payments.

Experts warn the trend poses greater systemic risks. Martyn Thomas, Emeritus Professor of IT at Gresham College, said software vulnerabilities and weak security practices continue to fuel the crisis: “If criminals were to decide to cause serious injury or many deaths, the same attack strategies could be used on critical systems in healthcare or major infrastructure.”

Another driver, analysts say, is reputation within cybercriminal networks. Pulling off high-impact breaches boosts a hacker’s credibility and standing among peers, creating a cycle of increasingly bold attacks.

The incident highlights the growing urgency for stronger software security and corporate defenses as ransomware groups become more emboldened, aiming not only for profit but also prestige.

EU confirms ransomware attack caused major airport disruptions

/in /tarafından

The EU’s cybersecurity agency ENISA confirmed on Monday that a ransomware attack was behind the widespread disruptions to automated check-in systems at several of Europe’s largest airports, including London Heathrow, Brussels, and Berlin. The incident, which began on Friday, has delayed or cancelled dozens of flights and impacted thousands of passengers.

What happened

  • The attack targeted Collins Aerospace’s MUSE software, a key system used for passenger check-in and boarding. Collins Aerospace is owned by RTX.

  • ENISA said law enforcement is investigating but did not disclose the origin of the ransomware or who may be behind it.

  • Ransomware attacks work by encrypting critical data and demanding payment for access restoration.

Impact on airports

  • Heathrow: Airlines implemented contingency plans, with most flights still operating.

  • Brussels Airport: Still facing major disruptions, using iPads and laptops to check in passengers. On Monday, about 60 flights were cancelled, and less than half of flights departed on time.

  • Berlin Airport: With extra passenger traffic from the Berlin Marathon, delays exceeded an hour, and check-in remained manual, with handwritten boarding passes.

  • Dublin Airport: Reported only minimal impact.

Broader context

  • The attack is part of a surge in high-profile ransomware cases, targeting critical infrastructure and major corporations.

  • Recent victims include Jaguar Land Rover, which was forced to halt production earlier this month.

  • A German industry survey found 1 in 7 companies have paid ransoms to recover from attacks.

  • Experts note that while such high-impact disruptions are highly visible, they remain relatively rare compared to the overall number of cyber incidents.

Expert perspective

Rafe Pilling of Sophos noted that attackers are increasingly focusing on high-visibility victims for maximum leverage:

“Disruptive attacks are becoming more visible in Europe, but visibility doesn’t necessarily equal frequency. Truly large-scale, disruptive attacks that spill into the physical world remain the exception rather than the rule.”

Collins Aerospace said it is in the final stages of deploying updates to restore full functionality across affected airports.