Hackers breach US air traffic control computers

May 8, 2009 The seal of the Federal Aviation Adminstration

Enlarge

The seal of the Federal Aviation Adminstration (FAA). Hackers broke into US air traffic control computers on several occasions over the past few years and increased reliance on Web applications and commercial software has made networks more vulnerable, according to a government audit.

Hackers broke into US air traffic control computers on several occasions over the past few years and increased reliance on Web applications and commercial software has made networks more vulnerable, according to a government audit.

Among the breaches was an attack on a (FAA) computer in February 2009 in which hackers gained access to personal information on 48,000 current and former FAA employees, the report said.

In 2006, it said, a viral attack on the Internet spread and forced the FAA to shut down some of its (ATC) systems in Alaska.

The audit was conducted by an assistant inspector general in the US Transportation Department and released this week. A copy of the report was obtained by Internet news agency CNET and posted online.

"The need to protect ATC systems from cyber attacks requires enhanced attention because the (FAA) has increasingly turned toward the use of commercial software and Internet Protocol-based technologies to modernize ATC systems," the report said.

It said the use of commercial software and Web applications may increase efficiency but "inevitably poses a higher security risk to ATC systems than when they were developed primarily with proprietary software."

Software vulnerabilities were "especially worrisome at a time when the nation is facing increased threats from sophisticated nation-state sponsored cyber attacks," the report said.

"By exploiting these vulnerabilities, the public could gain unauthorized access to information stored on Web application computers," it said.

"In addition, these vulnerabilities could allow attackers to compromise FAA user computers by injecting malicious code onto the computers," it said.

The report said a test identified 763 "high-risk" vulnerabilities which could provide an attacker with immediate access into a computer system and allow them, for example, to execute remote commands.

The Wall Street Journal said an FAA spokeswoman, Laura Brown, had rejected some of the report's conclusions, including the extent of the 2006 breach that led to the partial ATC shutdown in Alaska.

(c) 2009 AFP


print this article email this article download pdf blog this article bookmark this article     Stumble it Digg this share on Facebook retweet share on Reddit add to delicious
Rate this story - 4.8 /5 (5 votes)

Rank Filter

Move the slider to adjust rank threshold, so that you can hide some of the comments.


Display comments: newest first

  • docknowledge - May 09, 2009
    • Rank: not rated yet
    They can't switch the FAA over to proprietary software -- that would strike at the Internet's basic, underlying commercial purpose!

May 8, 2009 all stories

Comments: 1

4.8 /5 (5 votes)
  • Stumble this up

  • Digg this

  • share this

  • hide

  • Related Stories

  • Audit: Air traffic systems vulnerable to attack
    created May 06, 2009 | popularity not rated yet | comments 0
  • Researchers create next-generation software to identify complex cyber network attacks
    created Mar 17, 2008 | popularity not rated yet | comments 0
  • Security gurus see even harsher browser attacks for '07
    created Jan 31, 2007 | popularity not rated yet | comments 0
  • Comprehensive Database of Computer Vulnerabilities Now Available
    created Aug 10, 2005 | popularity not rated yet | comments 0
  • FAA telecom upgrade reaches IP milestone
    created Nov 30, 2005 | popularity not rated yet | comments 0



  • hide

  • Relevant PhysicsForums posts

Other News

A system of space solar power system (SSPS)

Japan eyes solar station in space as new energy source

Technology / Energy

created 2 hours ago | popularity 5 / 5 (3) | comments 3

It may sound like a sci-fi vision, but Japan's space agency is dead serious: by 2030 it wants to collect solar power in space and zap it down to Earth, using laser beams or microwaves.


Software cos. eye key patent case in Supreme Court (AP)

Software cos. eye key patent case in Supreme Court

Technology / Business

created 3 hours ago | popularity 5 / 5 (1) | comments 0

(AP) -- With the technology industry looking on, the Supreme Court on Monday will explore what types of inventions should be eligible for a patent in a pivotal case that could undermine such legal protections ...


Campaigners are stepping up efforts to curb online tracking

Advertisers face resistance to on-line tracking

Technology / Internet

created 1hour ago | popularity not rated yet | comments 0

Campaigners are stepping up efforts to curb online tracking of Internet use by firms that deliver adverts tailored to the specific interests of consumers, as polls reveal widespread unease with the practice.


Microsoft websites were the most visited in September

Microsoft websites top spots in September: comScore

Technology / Internet

created 22 hours ago | popularity 2 / 5 (4) | comments 0

Industry tracker comScore on Friday released a study showing that Internet users in September spent more time at Microsoft websites that at any other online properties.


Hacker illustration

Brazil blackouts result of cyber hacking: report

Technology / Internet

created 22 hours ago | popularity 3 / 5 (3) | comments 0

Massive power outages in Brazil in 2005 and 2007 that impacted millions were caused by cyber hackers attacking control systems, the US television network CBS said Sunday.




PhysOrg Account
advanced search
  • follow with twitter
  • follow on facebook
  • read with kindle
  • customize RSS
  • physorg mobile
  • newsletter