Rampant cybercriminal group targets US airlines
A notorious cybercriminal group has shifted its attention to the aviation industry, successfully breaching the computer networks of multiple airlines in the United States and Canada this month, according to the FBI and private experts responding to the hacks.
The hacking hasn't affected airline safety, but it has top cyber executives at major airlines across the United States on alert because of the hacking suspects: A network of young cybercriminals called 'Scattered Spider' who are known for their aggressive efforts to extort or embarrass their victims.
It's a fresh headache for the travel industry as the busy summer travel season kicks into high gear. This is now the third major US business sector in the last two months, after insurance and retail, to face a flurry of cyberattacks tied to the criminal group.
The hackers target big companies and their IT contractors, 'which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk,' the FBI said Friday night in a statement that named Scattered Spider as the perpetrator of the airline hacks. 'Once inside (a victim's network), Scattered Spider actors steal sensitive data for extortion and often deploy ransomware,' the FBI said.
The FBI, the statement continued, 'is actively working with aviation and industry partners to address this activity and assist victims.'
Hawaiian Airlines and Canada's WestJet confirmed this week that they were still assessing the fallout from recent cyberattacks, though the airlines did not name the perpetrators. More victims in the aviation industry could come forward, sources briefed on the investigation said.
WestJet's issues began two weeks ago, when the airline said it was responding to a 'cybersecurity incident' that was affecting access 'to some services and software systems,' including its app for customers. Both WestJet and Hawaiian Airlines said their operations were unaffected by the hacks.
The lack of impact on operations at the airlines is 'likely a sign of good internal network separations or good business continuity and resiliency planning,' said Aakin Patel, the former chief information security officer of Las Vegas' main airport.
It is not just the airlines themselves, but other 'segments of the aviation ecosystem' that are seeing increased cyberattacks, according to Jeffey Troy, the president of the Aviation ISAC, an industry group for sharing cyber threats. 'Our members are keenly alert to attacks from financially motivated attackers and collateral impacts emanating out of geo-political tensions around the world,' Troy said in a statement to CNN.
The fine margins for error in the airline industry were on display Friday, when a separate IT outage, apparently unrelated to malicious cyber activity, caused delays for some American Airlines passengers.
The Scattered Spider hacks have mobilized people across the industry to respond. In-house cybersecurity experts at major airlines have been closely monitoring the situation, sources familiar with the response told CNN, while cybersecurity firms such as Google-owned Mandiant are helping with the recovery and urging airlines to secure their customer service call centers.
One of Scattered Spiders' preferred methods of infiltrating corporations is calling up help desks and pretending to be employees or customers. The technique has been highly effective for hackers to gain access to the networks of big companies.
'Airlines rely heavily on call centers for a lot of their support needs,' Patel told CNN, making them 'a likely target for groups like this.'
Scattered Spider gained attention in September 2023 when they were linked to a pair of multimillion-dollar hacks on Las Vegas casinos and hotels MGM Resorts and Caesars Entertainment. The hackers tend to pick one sector to target for weeks on end. Earlier this month, they were the suspect in a hack of insurance giant Aflac that potentially stole Social Security numbers, insurance claims and health information. Before that, it was the retail sector: The hackers, according to an internal memo obtained by CNN, targeted Ahold Delhaize USA, which has the same parent company as the Giant and Food Lion grocery chains.
'The actor's core tactics, techniques, and procedures have remained consistent,' Mandiant chief technology officer Charles Carmakal said Friday in a statement, and that it 'is aware of multiple incidents in the airline and transportation sector' that resemble the operations of Scattered Spider.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Forbes
28 minutes ago
- Forbes
Retailer Stablecoins Are A Real Opportunity For Stable Retailers
People shop at a Walmart in Rosemead, California, on April 11, 2025 (Photo by FREDERIC J. BROWN/AFP ... More via Getty Images). The Wall Street Journal reports that some big players, including Walmart and Amazon, are exploring the idea of issuing their own retailer stablecoins in order to bypass the 'traditional' payment systems and exploit their 'troves of data'. This makes them a threat to banks, including regional and community lenders. Whether they succeed in stablecoins or not, the fact remains that retailers may have a much bigger role in the future of fintech. Retailer Stablecoins Are Within Reach Walmart is, of course, a focus for those of us looking at the retail/fintech possibilities and they have been looking in this direction for some time. Back in 2022, CTO Suresh Kumar said that crypto will become "an important payment tool" across the Metaverse and social media, as these will be the spaces where consumers discover new products. (Walmart are active in many directions here: their Mastercard credit card is expected to launch this fall, with the experience embedded inside the OnePay app.) The noted venture capitalists Andreessen Horowitz single out Walmart in their argument for 'how stablecoins will eat payments' pointing out that Walmart made $648 billion in annual revenue and $15.5 billion in profit, but paid $10 billion in fees to the payment networks (they also point out that for another supermarket chain, Krogers, net income and payment fees are approximately equal). Thus, they say, greater stablecoin adoption would significantly improve profitability in many businesses, including small businesses like coffee shops or restaurants. Stable or unstable? I am not commenting on their math, other than to say that payment fees cover a lot more than the cost of the payment and when considering the costs and benefits, it is also important to look at what additional services might be cross sold from payments. I might also comment that stablecoins are not the only way to drive down these costs and as Richard Crone points out that adding adding a pay-by-bank capability inside a retailer's wallet, such as OnePay, with the attendant anti-fraud benefits such as strong user authentication, could result in significant savings. Real-time payments have been around since 2017 thanks to The Clearing House starting the RTP network that year, but only some banks have adopted the new tool, and those that have signed up have had tepid uptake in the marketplace. The launch in 2023 of the Federal Reserve's competing instant system, FedNow, has boosted adoption by banks, but real world use remains limited: Walmart might change that. Sarah Arnio, Walmart's director of digital payments recently said that 'We're really bullish on instant payments and hoping to move forward with them within the next year'. Now, Walmart already gives customers the option to sign up on its website to be able to pay directly from a bank account, moving those payments via low-cost automated clearing house transfers (ACH) transfers but Arnio sees this as a 'stepping stone' to faster instant payments because "We at Walmart really have a drive internally to speed up everything'.. Looking beyond the current payments landscape, Walmart are also exploring AI-driven shopping assistants as an entirely new type of customer, distinct from traditional consumers, and they will need ways to pay too, as well as exploring a future where consumers may opt for third-party shopping agents built by technology firms, ensuring its systems are adaptable to external AI-driven purchasing solutions. (Walmart know, as I am fond on repeating, that AI agents won't just facilitate transactions in existing processes, they will reshape the entire retail experience.) They are also taking their first steps into the metaverse, the coming augmented and virtual reality space where customers will go to work, rest and play. They have their Walmart Realm to experiment with more 'engaging' buying options. Justin Breton, Walmart's director of brand experiences says that they are following three trends here: customers enjoy brands more when they have unique virtual experiences; customers want to be entertained while shopping; and customers are inspired by virtual games where they can purchase items they discover'. I've used Walmart as the example here but of course all big retailers must be looking at these new technologies with some similar ideas. Partly because of reduced costs and increased speed but also because of the potential for new business models. One advocate is Shopify, which recently announced it has already started allowing customers to pay with popular stablecoin USDC allow their small business base to tap into global markets. As they said in rheir press release, 'Small businesses should be able to sell to a customer on the other side of the world as easily as their next-door neighbor'. All in all, you can see why retailers might be motivated to move now, although it is fair to observe, as Brady Dale does, it would be on them to find a way to convince customers to hold enough stablecoins to fund their purchases The Bank Response To Retailer Stablecoins So what does the mean for banks? Tom Brown's summary seems pretty accurate to me. That so, stablecoins are having a moment [and] all of this attention has left large banks with a very bad case of FOMO. The fear may be justified. Ron Shevlin, a well-respected industry analysts, says that stablecoins could divert significant transaction volume—and core deposits—away from banks as retailers, fintechs, and Big Techs issue branded stablecoins that lead consumers to move cash into stablecoins for convenience, rewards, or programmability. It is hard to disagree with him when he says that for some people stablecoins become functional equivalents of bank deposits—but without the FDIC insurance, relationship ties, or regulatory protections banks provide. As Ron points out, this risk isn't theoretical: Deposit displacement has been happening for years. A new study from Cornerstone Advisors found that $2.15 trillion has already left banks for fintech investment accounts—two-third of it from Gen Xers and Baby Boomers. This is on top of the estimated $10 billion that Americans have sitting in merchant mobile apps like Starbucks' in any given week. So how can banks, who enjoy a great income stream from interchange right now, position themselves for a world of retailer stablecoins and instant payments? The networks have already been active—they are not sitting back and waiting—but on the general assumption that payments margins are on the way down, the banks' strategic response should be to add value around the transactions, not to try and survive off of shrinking interchange in the face of competition from non-card alternatives such as Walmart Pay-By-Bank or an Amazon coin. Those services might, for example, include safety and security, data and decisioning, not only the payments themselves.
CBS News
32 minutes ago
- CBS News
Sacramento County deputies respond to shooting that injured 1
The Sacramento County Sheriff's Office said a man was shot and injured early Sunday morning. Around 5:30 a.m., deputies responded to the 9500 block of Osman Way for reports of a shooting. The Sheriff's Office said the man was shot in the leg, and he was taken to the hospital by a family member, with injuries that were not life-threatening. He was shot while walking outside, the Sheriff's Office said, and detectives are investigating.
Yahoo
35 minutes ago
- Yahoo
How F1 aims to enter its 'biggest untapped market' with new arcade experience
Listen and subscribe to Sports Report on Apple Podcasts, Spotify, or wherever you find your favorite podcasts. Formula One racing has become increasingly popular in the US, and F1 is looking to appeal to more than just racing fans with the rollout of F1 Arcade locations across the country. F1 Arcade, which entertains guests with live racing simulators and a variety of food and drink, has already opened locations in three US cities this year, and it plans to open three more. Residents in Boston, Las Vegas, Denver, Austin, Philadelphia, and Washington, D.C., will have the opportunity to dive into the newest experience. F1 Arcade global president of development Jon Gardner said on Yahoo Finance's Sports Report podcast that the US is currently "the biggest untapped market" for F1. In Las Vegas alone, those who attend F1 events spend an estimated four times as much as other Vegas visitors. Liberty Media (FWONB) has also inked a 10-year, $600 million deal, bringing the internationally popular races to the city. Gardner emphasized that partnerships like this and interactive experiences, like F1 Arcade, will only help expand F1's reach and build a bigger audience. "You might not be interested in Formula One, but you might be interested in the driver or what they're interested in, and then that's your gateway into this,' Gardner said. "[Formula One is] putting a lot of resource and capital behind the US. I think they see us as a matter of funnel for them, attracting the F1 fans with the non-F1 fans who, again, might want a night out, might want to do something fun that they have not done before. And then that creates more interest in the overall sport." Gardner discussed how the partnership with the increasingly popular racing brand has a wider appeal. "This is not just for F1 fans," Gardner said. "Yes, we want F1 fans to come here, but this is for people that want a new experience and to try something they've not had before." He explained that F1 Arcade is marketed toward a more general audience for "date night, group events, [and] social events." And the pursuit of non-fans has guided F1 Arcade's strategy when choosing new branch locations. Gardner said F1 Arcade isn't necessarily "shying away" from markets where F1 already has a following, but at the same time, "It's also looking where the right location is in the right time." He continued, "We have big sites; they're not the easiest to find. ... So finding the right partners from a landlord, finding the right deal structure, and then finding the right area that we feel like we can get involved in, in a deep way, all those things come together to create where we end up." Gardner thinks the F1 Arcade can cater to American consumers' desire for unique experiences, drawing a wide audience for a few memorable visits rather than creating more consistent customers. Between 2019 and 2023, Americans increased their spending on experiences by 65%, according to Forbes. "We [want] people to come back, and that repeat [customer] is very important to us, but ultimately they're not coming back to us 30 times a year, right?" Gardner said. "So they come back to us three, four times a year, that's amazing. But they're going to fill other weekends and other date nights out going other places." Ultimately, Gardner feels the memorable experience the F1 Arcade offers will draw fans and non-fans alike. "I also think people want new experiences," he said. "I think attention spans are getting shorter, people want to be able to interact, and they're not going into the office maybe as they used to. So people are finding ways to connect with colleagues and their partners and find something to do while they're having a drink or having food." Every Thursday, Sports Report with Joe Pompliano coaches you through the latest sports business news so you can play the financial game for financial gain. You can find more episodes on our video hub or watch on your preferred streaming service. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
