Posts Tagged ‘madrid’


[NBCCHICARGO.COM] A cyber security expert tells NBC5 Investigates he has found a way to hack into the satellite communications systems used in multiple industries.

“These devices are wide open right now,” said Ruben Santamarta, a security consultant based in Madrid, Spain with IOActive.

"For the aerospace sector we can disrupt satellite communications, [and] potentially modify the data that goes through those channels," said Santamarta

“For the aerospace sector we can disrupt satellite communications, [and] potentially modify the data that goes through those channels,” said Santamarta. Image: nbcchicargo.com

Pilots, ship captains and military personnel rely on satellite networks to communicate when there are no phone lines or wireless networks available.

“If someone can see the password or that user name it’s over,” he added. “Those vulnerabilities can be exploited to remotely compromise those devices.

Santamarta said he used something called reverse engineering — or decoding — to hack satellite communications equipment used in aerospace, maritime and military industries.

“In the military sector they use satellite terminals for combat units,” said Santamarta. “They normally encrypt the radio [transmissions] they send. But we can disrupt the satellite communications channel so we can prevent combat units [from asking] for help if they are being attacked.”

And in the maritime sector, satellite communications are used to send and receive vital information that affects the safety of the crew.

“If they are being attacked by terrorists, or they are suffering fire, they can send a distress call,” he said. “But we found we can modify the firmware in some of those terminals, so we can prevent a crew from sending a distress call.”

Santamarta recently published a 25-page report and went public with his findings at Defcon 22 – the largest hacking conference in the world – held earlier this month in Las Vegas, Nevada.

“For the aerospace sector we can disrupt satellite communications, [and] potentially modify the data that goes through those channels,” said Santamarta. “In some cases you need physical access to compromise the devices we analyzed, but in other cases you can use Wi-Fi or the entertainment network to access that device.”

His research took place in a lab setting and has not been tested on an actual commercial plane. But his findings have raised concerns in the aviation industry.

Read the full story at NBCCHICARGO.OM here….

 


NBCCHICARGO.COM
21st August, 2014


 

 

 

Advertisements

[World Bulletin] Cybersecurity researcher Ruben Santamarta says he has figured out how to hack the satellite communications equipment on passenger jets through their WiFi and in-flight entertainment systems – a claim that, if confirmed, could prompt a review of aircraft security.

“In theory, a hacker could use a plane’s onboard WiFi signal or inflight entertainment system to hack into its avionics equipment, potentially disrupting or modifying satellite communications”

Santamarta, a consultant with cybersecurity firm IOActive, is scheduled to lay out the technical details of his research at this week’s Black Hat hacking conference in Las Vegas, an annual convention where thousands of hackers and security experts meet to discuss emerging cyber threats and improve security measures.

His presentation on Thursday on vulnerabilities in satellite communications systems used in aerospace and other industries is expected to be one of the most widely watched at the conference. “These devices are wide open.

The goal of this talk is to help change that situation,” Santamarta, 32, told Reuters. The researcher said he discovered the vulnerabilities by “reverse engineering” – or decoding – highly specialized software known as firmware, used to operate communications equipment made by Cobham Plc, Harris Corp, EchoStar Corp’s Hughes Network Systems, Iridium Communications Inc and Japan Radio Co Ltd.

 

In theory, a hacker could use a plane’s onboard WiFi signal or inflight entertainment system to hack into its avionics equipment, potentially disrupting or modifying satellite communications, which could interfere with the aircraft’s navigation and safety systems, Santamarta said.

He acknowledged that his hacks have only been tested in controlled environments, such as IOActive’s Madrid laboratory, and they might be difficult to replicate in the real world.

Santamarta said he decided to go public to encourage manufacturers to fix what he saw as risky security flaws. Representatives for Cobham, Harris, Hughes and Iridium said they had reviewed Santamarta’s research and confirmed some of his findings, but downplayed the risks.

For instance, Cobham, whose Aviation 700 aircraft satellite communications equipment was the focus of Santamarta’s research, said it is not possible for hackers to use WiFi signals to interfere with critical systems that rely on satellite communications for navigation and safety.

The hackers must have physical access to Cobham’s equipment, according to Cobham spokesman Greg Caires. “In the aviation and maritime markets we serve, there are strict requirements restricting such access to authorized personnel only,” said Caires. A Japan Radio Co spokesman declined to comment, saying information on such vulnerabilities was not public.

Read the full story here…… 

 


World Bulletin 4th Aug, 2014



[Daily Mail] Budget airline Ryanair has been ordered to ‘review’ the amount of fuel it carries after three of its planes – including one from the UK –  were forced to make ‘Mayday’ emergency landings in Spain when  they started to run out .

Ryanair was operating with a level of fuel that was 'close to the minimum' required in the case of a diversion

Ryanair was operating with a level of fuel that was ‘close to the minimum’ required in the case of a diversion. Photo: Wikipedia

The airline was operating with a level of fuel that was ‘close to the minimum’ required in the case of a diversion, they said.

Three Ryanair Boeing 737-800 aircraft heading to Madrid were forced to make emergency landings after being diverted to Valencia because of thunderstorms over the Spanish capital.

One of the three affected  planes was heading from Stansted Airport to Madrid when the diversions and emergency landings occurred at Valencia on July 26 this year.

The Irish Aviation Authority Report noted: ‘All three aircraft declared an Emergency (Mayday) when the calculated useable fuel on landing at Valencia was less than the final reserve.’

The watchdogs accept that  all three Ryanair planes left for Madrid ‘with fuel in excess of Flight plan requirements’  and also with fuel ‘in excess of the minimum diversion fuel’ required, so remained strictly  within the rules.

However, the IAA also noted: ‘Diverting with fuel  close to the minimum diversion fuel in the circumstances presented on the evening in question was likely to present challenges for the crew.’

It has also questioned whether the current fuel limit rules give passenger jets enough latitude  land safely in the event of a diversion from Madrid – and asked Spanish aviation chiefs to look at them again.

Spanish pilot union leaders have accused Ryanair of…..

Read the full story at Mail Online…..


Mail Online
21st Sept, 2012



[Independant] Millions of people who have already paid in full for their summer flights to Spain have been warned they may have to pay a surcharge before they are allowed on board.

Charges at the two main airports in Madrid and Barcelona could soar

Ryanair – which is now the leading airline between the UK and Spain – has sent emails to “millions” of passengers booked to fly from Spanish airports about possible airport fee increases.

The message says “We may be forced to debit passengers for any government imposed increases in airport charges prior to your travel date”, and cites its rule that says “If any such tax, fee or charge is introduced or increased after your reservation has been made you will be obliged to pay it (or any increase) prior to departure”.

Ryanair’s chief executive, Michael O’Leary, said the warning arose from a draft budget presented by the Spanish government, with what he called the “ludicrous suggestion” that charges at the two main airports in Madrid and Barcelona could soar:

“It’s a bit uncertain at the moment but it looks like the Spanish government are going to double the airport fees overnight the day the budget gets passed. We have already taken a number of millions of bookings for passengers intending to travel to these airports this summer and if they double the taxes we will be sending them a bill for the increase taxes or debiting their debit and credit cards”.

There is no certainty that any increase in airport charges will take place, but Richard Taylor of the Civil Aviation Authority said it was a commercial decision to pass any such rise on: “It is up to the airline to choose where the money comes from; whether this is taking money from the customer or footing the bill themselves. They are legally within their rights to take money from customers who have already paid.”

Mr O’Leary said passengers who object would get a full refund: “You can of course reject that additional payment, cancel your flight and then not fly with us if you so wish.  But we’re not going to be funding the Spanish government’s taxes.”….

Read the full story from Simon Calder at The Independent….


SIMON CALDER 
THURSDAY 19 APRIL 2012



Venezuela ’s state-run airline, Conviasa, has been banned from flying to countries in the European Union because of safety concerns, European transportation regulators said Tuesday.

Venezuela ’s state-run airline, Conviasa, has been banned from flying to countries in the European Union because of safety concerns

Venezuela ’s state-run airline, Conviasa, has been banned from flying to countries in the European Union because of safety concerns

The airline’s only European destination was Madrid. Most of its flights are within Venezuela but it also flies to Bogotá, Colombia; Buenos Aires; and several Caribbean islands.

A report by the European Commission  said that the Spanish authorities found “numerous serious safety deficiencies” during inspections of Conviasa planes.

The report also cited two fatal accidents involving Conviasa flights, including one in 2010 that, according to news reports, killed 17 people. It said that Conviasa failed to show it had taken adequate steps to prevent future accidents.

The Venezuelan Foreign Ministry rejected the action as disproportionate.

Full story from The New York Times….


By 
Published: April 4, 2012