Cisco warns of a hacking campaign targeting the aviation industry

PHOTO

Dubai, United Arab Emirates – Cisco detected a targeted phishing campaign aimed at the aviation industry for two years, which was potentially organized by cyber threat actor(s) operating out of Nigeria.

The actor(s) have been targeting the aviation industry for the last two years, while managing other campaigns at the same time. Researchers found that they do not seem to be technically sophisticated as they’re using off-the-shelf malware since the beginning of their activities without developing their own malware.

The operators also bought crypters that enable the usage of such malware without being detected. Throughout the years they used several different cryptors, mostly bought on online forums and are believed to have been active since 2013.

The cyber attacks involve emails containing specific lure documents centered around the aviation or cargo industry that purport to be PDF files but link to a VBScript file, which ultimately leads to the delivery of remote access trojans (RATs), leaving organizations vulnerable to an array of security risks.

Actors that perform smaller incidents can keep doing them for a long period of time under the radar. However, their activities can lead to major incidents at large organizations. These are the operators that feed the underground market of credentials and cookies, which can then be used by larger groups on activities.

Commenting on the targeted attacks, Fady Younes, Cybersecurity Director at Cisco Middle East and Africa said: “Many operators can have limited technical knowledge but still be able to operate RATs or information-stealers - posing a significant risk to large corporations given the right conditions. In this case, what appeared to be a simple campaign was, in fact, a continuous operation that has been active for years - targeting a whole industry with commodity malware hidden with different crypters.”

“Even though cybersecurity is not a threat specific to aviation, in the last few years the sector has been at the forefront of several cyber attacks. It is crucial to be careful with weak links that could lead to flawed conclusions. The weak links shouldn't be discarded — it would be wise to view them as one more piece of information that, together with other links, can yield to a much stronger relationship between two pieces of information,” Younes added.

-Ends-

About Cisco

Cisco (NASDAQ: CSCO) is the worldwide leader in technology that powers the Internet. Cisco inspires new possibilities by reimagining your applications, securing your data, transforming your infrastructure, and empowering your teams for a global and inclusive future. Discover more on The Network and follow us on Twitter.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.

Media Contact:
Tamara Azab
Head of Communications - MEA
Cisco
tazab@cisco.com
+971 55 706 5472
Aaron Budwal
Senior Account Executive
Hill+Knowlton Strategies
aaron.budwal@hkstrategies.com
+971 55 143 2795

Send us your press releases to pressrelease.zawya@refinitiv.com

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.

Cisco warns of a hacking campaign targeting the aviation industry

DISCOVER MORE

Khalifa University ranks first in UAE in top 1% research journal publications

Knowledge leadership: MBRF’s global efforts to advance education and innovation

Agthia Group shareholders approve cash and stock dividends at annual general meeting

Masraf Al Rayan leads with tailored real estate financing options for non-residents

Budget Saudi signs 10-year franchise agreement with ABG Group

Ahmad Belhoul Al Falasi: We are working towards revamping legal programmes in the country's universities

Mobmio invests $500,000 in a new platform to accelerate mobile app growth in MENA

AGDA inks strategic partnership with Abu Dhabi Music & Arts Foundation

Dar Global announces partnership with Aston Martin to deliver stunning beachfront residences in Ras Al Khaimah, United Arab Emirates

Al Hamra set to introduce an exclusive beach club to Ras Al Khaimah with a partnership with RIKAS Hospitality Group

Albal Design launches UAE's first science based interior design concept

NBK launches “NBK 247 cashback Visa platinum prepaid card ” with up to 24% cashback

Du announces the launch of “du Pay”, offering transformative fintech solutions for UAE residents

Online site blocking bill pushed to curb digital piracy in Philippines

UAE: Education, aviation, healthcare most vulnerable to cyberattacks, say experts

Forum highlights need to secure telecom networks from cyberattacks in Oman

British Chamber highlights cybersecurity industry in boosting UK-PH trade

Local tech company helps drive cybersecurity awareness in Cebu, Philippines

LATEST VIDEO

VIDEO: Expect more extreme weather threats like UAE floods worldwide – Climate expert

ZAWYA COVERAGE

Development cost of Saudi Arabia’s 320,000 hotel room pipeline to hit $104bln – Knight Frank

VIDEO: Expect more extreme weather threats like UAE floods worldwide – Climate expert

Saudi Arabia’s Alsulaiman Group planning 300 Circle K stores in five years

Saudi water PPP company Miahona plans IPO, Tadawul listing

UK industrial orders fall despite greater optimism, CBI survey shows

Floods wreak havoc in Kenyan capital

New technology helps US shale oil industry start to rebuild well productivity

'So hot you can't breathe': Extreme heat hits the Philippines

Sanad, Khalifa University strengthen industry-academia partnership

THE BRI REPORT

China’s flagship global infrastructure initiative is changing in the face of potent headwinds