>> What’s the worst that could happen? Bad press coverage?
A flashed bomb threat. Flight doesn't take off, or is diverted to an alternate airfield, or otherwise misses its connection. That sort of thing can quickly cascade into six or seven cost figures. A widespread attack across a fleet could be crippling, at least the first time it happens.
My wife shared a tiktok with me last year, which was clips of an American Airlines flight, Airbus Plane, and someone had "hijacked" the speaker system. I combed the Airbus manuals and maintaince PDFs and found that those planes have several exposed compact flash ports for "pre-flight audio". I hypothesized that either the copilot lost a bet or someone slipped a pre-recorded track into one of those slots... /shrug, but Im still interested in those CF card slots...
To save you some reading:
> Can a passenger hack the airplane from their seat? They can’t.
The passenger entertainment system typically displays some information related to flight location, speed, altitude, ETA and so on. Where does that info come from ? If it does come from the "Aircraft Control Domain, or ACD" then these two systems are probably not "completely isolated" as claimed in the article?
This article has some of the most frustrating uses of quotations I’ve seen: they’re placed right beside the paragraph they quote and they are exactly the same as the paragraph, so it’s forcing you to read the same thing multiple times.
Everyone is dismissing the headline as clickbait. The interesting part is the discussion on Electronic Flight Bags and their security. Seems like a gap.
Some years ago I was on a Lauder Air flight and somehow unintentionally crashed out the in-flight entertainment system when switching channels, fiddling with the buttons or such and ended up with the OS command prompt.
Not exactly life-threatening but it ought not to have happened.
I would add one more thing about hacking IN an airplane (not "a plane"): with the chat app included in many flights you can scam people and do other kind of funny things interacting between unknown people in the flight.
Have done pranks to my family there.
If 1Password are beginning to drop clickbait blog posts like this -- it tells me something.
> The airplane networks are very carefully segregated. You have a bit in the cabin that’s called the Passenger Information Entertainment Services Domain. That’s completely isolated from what we call the Aircraft Control Domain, or ACD.
Seems to raise the question of where the nearest connection to the ACD is, from the passenger cabin.
So the answer is: "No they cannot".
How hard can it be. Just brute force the admin password and fly the plane like in GTA as the pilots lose their minds.
Will this article please get to the point!
Script kiddies of the future would own the airplanes of today.
Pfft. Just make a GUI in HTML using Visual Basic.
Security researcher Chris Roberts FAFO'ed with this some years back. It cost him his consulting company if I recall?
https://www.wired.com/2015/05/feds-say-banned-researcher-com...