Web Perversion
Solutions
Inside Sanctum
Events
Customers
Support
AppShield Demo
AppScan Demo
web perversion demo
Featured Coverage  
Despite increased security, airlines still vulnerable to cyberattack, analysts say
 

Aerospace Daily
January 24, 2002

As more measures are taken to tighten physical security in domestic airports, U.S. airlines remain highly vulnerable to cyberattack, according to Internet security analysts.

Airlines make particularly attractive targets for cybercriminals - whose crimes can run the gamut from simple vandalism to identity theft and financial espionage - since so much of their business has migrated online, according to Izhar Bar-Gad, chief technology officer at Sanctum, Inc.

An online security company, Sanctum often performs "audits" for companies, in which they run experiments to see how vulnerable their clients' web operations are, Bar-Gad said.

"We've audited quite a few airlines in the U.S., and the situation with them is certainly not good," he told The DAILY. "We've been able to do many things, starting from downloading all of the source code of their site, [to] gaining access to their employee accounts, changing aspects of their pricing, etc. The results are very, very frightening."

The potential dangers to airlines include lost revenue due to ticket forging and price manipulation, as well as graver threats, Bar-Gad said, including "looking at records of their employees, and thereby gaining access to their employees, which is something that is extremely dangerous."

Sanctum, along with other cybersecurity companies such as KaVaDo Inc. and Stratum8 Networks, are involved in the emerging field of "application security," in which programs running on a company's website are protected, in addition to protecting the server itself.

"In the early days of the Internet, what the hackers were going against was the operating systems of the servers," John Pescatore, research director for Internet security at Gartner Group, told The DAILY. "These days we're more likely to find them going after the applications, like, say in a shopping site - the shopping cart application. Or on a travel site - the application that presents you with itineraries and books the reservation. This is software that's written specifically to run on top of the web server, and those are where we find huge, gaping holes [in security]."

A determined cybercriminal could use the Internet to gain information not only about airline customers and employees, but also critical information about the aircraft themselves - "all of the information about [the planes], all their plans for them, where they keep them, where they fly them, at what times, etc.," Bar-Gad said.

Despite all the emphasis on increased physical security after the Sept. 11 terrorist attacks, Pescatore isn't sure that the threat of cyberattack has "sunk in" with most U.S. airlines yet.

"The reason I say I'm not sure that it's really sunk in is, I've seen a lot of proposed use of wireless networks by the airlines at airports for ground communications and the like, and [in] the proposals I've seen, they look like they've been leaving them wide open. Now that's not the Internet, necessarily, but it's wireless networks that any passenger in the airport with a laptop with a wireless interface could try to take advantage of."

Although most known use of the Internet by terrorists so far has been "legitimate" - i.e., e-mail, research, and online shopping or banking - Pescatore thinks it's only a matter of time before they branch out into cyberattack.

"The Internet lets terrorists take a shot in the safety of their own country, so we know it's inevitable," he said.



      © 2002 Sanctum, Inc.      Privacy Statement
  1. https://www.gustudentassociation.org/
  2. https://kimmerestaurant.com/
  3. https://www.nyonyafood.com/
  4. https://www.perfectotech.com/
  5. https://www.planetgapyear.com/
  6. https://whatcomvet.com/
  7. https://theclassicyachtexperience.com/
  8. https://www.batonrougerosesociety.org/
  9. https://www.finburysullivan.com/
  10. https://mikrofinanzinstitut.com/
  11. https://www.the-vision-of-harmony.org/
  12. https://www.pantheonpress.com/
  13. https://thefinancialgraduate.com/
  14. https://www.thenutkitchen.com/
  15. https://altiboutique.com/
  16. https://ambushsweden.com/
  17. https://goingonforgod.com/
  18. https://lasdopestattorney.com/
  19. https://www.sewardne.com/
  20. https://www.tehranfestival.com/
  21. https://brysonchristianmontessorischool.com/
  22. https://www.excalibureurope.com/
  23. https://www.originallotsoflox.com/
  24. https://www.wavespace-berlin.com/
  25. https://www.michiganmediates.org/
  26. https://www.yourmyrtlebeachproperty.com/
  27. https://metrcconference.com/
  28. https://biotechscope.com/
  29. https://jzbrasil.com/
  30. https://saafootball.org/
  31. https://griefergames.info/
  32. https://ampalauragarcianoblejas.com/
  33. sbobet
  34. judi parlay
  35. togel kamboja
  36. Pengeluaran Cambodia
  37. judi bola
  38. Togel Kamboja
  39. keluaran Kamboja
  40. slot thailand
  41. togel kamboja
  42. keluaran kamboja
  43. togel Kamboja
  44. slot demo
  45. keluaran cambodia
  46. togel cambodia
  47. live draw macau
  48. slot thailand
  49. pengeluaran kamboja
  50. judi bola
  51. sbobet
  52. slot demo
  53. togel sdy
  54. demo slot
  55. keluaran kamboja
  56. judi sbobet
  57. slot qris
  58. slot qris 5000
  59. slot qris
  60. slot deposit 5000
  61. slot qris
  62. pintarbersamamedan.org
  63. slot qris gacor
  64. slot qris 5000
  65. toto macau
  66. pengeluaran macau
  67. macau pools
  68. slot server thailand super gacor
  69. slot qris 5k
  70. togel hk
  71. togel hk
  72. togel hk
  73. togel hk
  74. data hk
  75. data sdy
  76. togel
  77. data sdy
  78. generasitogel
  79. generasitogel
  80. generasitogel
  81. Live Draw HK
  82. HK Lotto
  83. Live SDY Lotto
  84. Live HK
  85. Live Draw SDY
  86. Live SDY Lotto
  87. situs slot dana
  88. TOGEL SDY
  89. Live Toto Macau
  90. KELUARAN HK
  91. generasitogel
  92. Live Draw HK
  93. Live Draw Singapore
  94. Live HK
  95. pengeluaran macau
  96. Live Draw HK
  97. Live Togel Singapore
  98. Live Draw SDY
  99. Data HK
  100. Live Draw SDY
  101. Live Draw SGP
  102. Togel SDY
  103. Togel HK
  104. Live Togel SGP
  105. Live SDY
  106. live draw sdy
  107. Live HK Pools
  108. HK Pools
  109. Live SDY Pools
  110. SDY Hari Ini
  111. Slot Pulsa Indosat
  112. Slot Deposit Indosat