GA At Risk For Hacking

3

The Department of Homeland Security is said to be preparing a “security alert” insisting that small-aircraft systems could be hacked easily. According to an Associated Press report, the DHS is concerned that physical access to aircraft could allow hackers to install hardware to spoof sensor readings that in turn could provide erroneous system or attitude indications.

The DHS’s call to action comes after a report by the cybersecurity company Rapid7, which points out that small aircraft are more likely to have un-hardened CANbus data connections and can be easily broken into. The FAA says that general airport security measures should keep hackers away from aircraft but acknowledged that it would look into the matter later this year. 

Patrick Kiley, Rapid7’s lead researcher, told the AP that accessibility is a concern. “Someone with five minutes and a set of lock picks can gain access (or) there’s easily access through the engine compartment,” he said. The firm also points out that commercial and military aircraft are considerably more secure than the typical GA fleet.

Rapid7’s recommendations are in line with years of research on automotive networked systems, which have become far more robust over the years, both for security reasons and to ensure compliance with various federal emissions and safety regulations.

Other AVwebflash Articles

3 COMMENTS

  1. I suppose biz airplanes may face some concern over this risk but I really don’t want to be caught up in some kind of pre-emptive mandate & blanket enforcement scheme even if my airplane has no electrical system.

  2. What is the risk here? If this hypothetical hacker wants to hurt the plane or crew they could just as easily contaminate the fuel, damage a tire, or any number of other things that DON’T involve sitting in the cockpit with a laptop trying to hack the CANBUS while the battery drains. And using the hacked avionics to somehow spoof where the aircraft goes or what it does seems laughably far fetched.