US air traffic systems 'vulnerable to hackers'
Thursday 07 May 2009
America's air traffic control systems are vulnerable to cyber attacks, and support systems have been breached in recent months to allow hackers access to personnel records and network servers, a new report says.
The audit done by the Department of Transportation's inspector general concluded that although most of the attacks disrupted only support systems, they could spread to the operational systems that control communications, surveillance and flight information used to separate aircraft.
The report noted several recent cyber attacks, including a February incident, in which hackers gained access to personal information on about 48,000 current and former FAA employees, and an attack in 2008 when hackers took control of some FAA network servers.
Auditors said the Federal Aviation Administration is not able to detect potential cyber security attacks adequately, and it must secure its systems better against hackers and other intruders.
"In our opinion, unless effective action is taken quickly, it is likely to be a matter of when, not if, ATC (air traffic control) systems encounter attacks that do serious harm to ATC operations," the auditors said.
In response to the findings, FAA officials stressed that the support systems and traffic control networks are separated. They agreed, however, that more aggressive action should be taken to secure the networks and secure high-risk vulnerabilities.
According to the report, the FAA received 800 cyber incident alerts during the budget year that ended September 30, 2008, and more than 150 were not resolved before the calendar year was over.
Fifty of those, the auditors said, had been open for more than 3 months, "including critical incidents in which hackers may have taken over control" of some computers.
Officials tested internet-based systems that are used to provide information to the public such as communications frequencies for pilots, as well as internal FAA computer systems.
The tests found almost 4,000 "vulnerabilities," including 763 viewed as "high risk." The vulnerabilities including weak passwords, unprotected file folders and other software problems.
The weaknesses could allow hackers or internal FAA workers to gain access to air traffic systems, and possibly compromise computers there or infect them with malicious codes or viruses, the audit warned.
Such software gaps, the report said, are "especially worrisome at a time when the nation is facing increased threats from sophisticated nation state-sponsored cyber attacks."
In its response to the audit, the FAA said corrective actions already are being taken, and others should be in place in the coming months.
The audit is the latest in a series of reports and warnings about weaknesses in the US government's computer networks, including revelations that spies have hacked into the US electric grid and a military aircraft program was breached, although classified information was not compromised.
The Obama administration, meanwhile, is wrangling over a recently completed review of the nation's cybersecurity, which is expected to detail how the United States should manage and secure its networks.
Life & Style blogs
Men in crop tops seem to be trending thanks to Kid Cudi, the social media and the catwalk
What is ALS and the Ice Bucket Challenge?
Greggs Google fail: bakery chain falls afoul of search engine's algorithms with 'unofficial' logo
Anal sex study reveals climate of 'coercion'
Is this the end of apps? New research says a third of us don't bother to download
Isis threat: Cameron wants an alliance with Iran
Crisis? What crisis? A visiting US doctor gives the NHS a rave review
Ukip MEP calls for reintroduction of death penalty on fiftieth anniversary of last deaths
Russell Brand calls for Israel boycott: Comedian urges big businesses that 'facilitate the oppression of people in Gaza' to pull funding
Michael Brown shooting: Chaos erupts on the streets of Ferguson after autopsy shows teenager was shot six times – twice in the head
World peace? These are the only 11 countries in the world that are actually free from conflict
- 1 Three of Pope Francis' relatives die in Argentina car crash, including two young great-nephews
- 2 Michael Brown shooting: Amnesty International sends team within US for first time as National Guard deployed
- 3 Here’s the damning letter Robin Williams wrote to his Mrs Doubtfire co-star's principal after they expelled her
- 4 Ferguson protests: 90-year-old Holocaust survivor Hedy Epstein ‘arrested’ by police during St Louis demonstrations
- 5 Cilla Black defends Cliff Richard: 'I am positive that the allegations are without foundation'
iJobs Gadgets & Tech
£60000 - £65000 per annum + Benefits + Bonus: Harrington Starr: C# .NET Develo...
£45000 - £60000 per annum + Benefits + Bonus: Harrington Starr: Front End Deve...
£30000 - £33000 per annum + Benefits + Bonus: Harrington Starr: Junior DBA (SQ...
£45000 - £75000 per annum + BONUS + BENEFITS: Harrington Starr: Harrington Sta...