Security News > 2021 > June > Monumental Supply-Chain Attack on Airlines Traced to State Actor
A monster cyberattack on SITA, a global IT provider for 90 percent of the world's airline industry, is slowly unfurling to reveal the largest supply-chain attack on the airline industry in history.
The enormous data breach, estimated to have already impacted 4.5 million passengers, has potentially been traced back to the Chinese state-sponsored threat actor APT41, and analysts are warning airlines to hunt down any traces of the campaign concealed within their networks.
SITA announced the attack in March, and soon after Singapore and Malaysia Airlines were the first airlines to disclose that their customers' personal data had been exposed.
Adding in Air India's customers, the SITA attack has now impacted 4.5 million people, the report said.
Group-IB said the Air India attack persisted for at least two months and 26 days.
The researchers were able to tie APT41-controlled IP addresses to those used the Air India attack, and said the incident showed similarities with the SITA attack and others carried out by APT41.
News URL
https://threatpost.com/supply-chain-attack-airlines-state-actor/166842/
Related news
- OpenWrt orders router firmware updates after supply chain attack scare (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)
- Ultralytics Supply-Chain Attack (source)
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack (source)
- It's only a matter of time before LLMs jump start supply-chain attacks (source)
- PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack (source)
- IPany VPN breached in supply-chain attack to push custom malware (source)
- Supply chain attack hits Chrome extensions, could expose millions (source)