September 6, 2024 at 06:30AM CISA responded to the disclosure of a security vulnerability in FlyCASS, a third-party application related to airport security systems. The issue allowed unauthorized access to the account of a participating airline, potentially compromising security screening and cockpit access. The researchers identified and reported several serious issues, prompting the disabling of … Read more
August 30, 2024 at 03:10PM Security researchers uncovered a vulnerability in a critical air transport security system, enabling unauthorized individuals to potentially bypass airport security and access aircraft cockpits. Based on the meeting notes, the key takeaway would be that security researchers have discovered a vulnerability in a critical air transport security system, potentially allowing … Read more
August 30, 2024 at 09:35AM Cybersecurity researchers discovered a vulnerability in the Known Crewmember (KCM) and Cockpit Access Security System (CASS) programs, allowing unauthorized access to skip airport security and enter the cockpit of commercial airliners. By exploiting a SQL injection bug in the third-party vendor site FlyCASS, the researchers gained admin access and manipulated … Read more
August 26, 2024 at 01:05PM Seattle-Tacoma International Airport, part of the Port of Seattle, experiences widespread Internet and Web systems outages, potentially due to a cyberattack. The airport began encountering system malfunctions on Aug. 24, affecting various services, but security operations are unaffected. Efforts to restore normal operations are ongoing, with travelers advised to check … Read more