Hacker claims planes could be hit by cyber attack through in-flight Wi-Fi and entertainment systems
Passenger planes' navigation and safety equipment could be "wide open" to hackers and be attacked through in-flight Wi-Fi and entertainment systems, according to a cyber security researcher.
Ruben Santamarta, a consultant at the cyber security firm IOActive, claims to have identified weak spots in these systems which could give hackers access to satellite communication equipment, telling Reuters: “These devices are wide open."
Santamarta said he discovered the vulnerabilities in the firmware used to operate the communication equipment and that hackers could in theory exploit these through Wi-Fi signals and in-flight entertainment systems to disrupt aircraft navigation and safety systems.
Representatives for defence firms Cobham and Hughes, as well as telecoms and satellite equipment firms Harris and Iridium, have said they reviewed Santamarta’s research, confirming some of his findings but downplaying any risks, Reuters reports.
Cobham said it would not be possible for hackers to interfere with the navigation and safety systems of a plane through Wi-Fi because the systems require physical access.
Harris concluded “that the risk of compromise is very small” and Iridium said it “is minimal, but we are taking precautionary measures to safeguard our users.” Hughes said the worst that could happen is that a hacker disables a communication link.
In addition to aircraft, the vulnerabilities could affect ships, military personnel, emergency services and industrial facilities.
Santamarta is due to discuss the technical details of his research findings at hacking conference Black Hat held in Las Vegas this week. It’s expected to be one of the most widely watched talks by cyber security experts attending the event.
Further research to be unveiled at the event claims that simple USB devices can easily be used to hack computers.