Aviation Cybersecurity News
Our Team is on the lookout for threats every day, as we support our clients with their compliance.
Here we share with the rest of the community the latest news and information relevant to EASA Part-IS
TAP Air Portugal Targeted in Alleged Data Leak
Overview In early April 2025, a dark web post surfaced offering a 1GB dataset allegedly stolen from TAP Air Portugal, reportedly containing over 6.2 million
Aeroflot Hit by Year-Long Cyberattack
Overview On 28 July 2025, Russian flag carrier Aeroflot confirmed a massive IT outage initially reported as an “information-system failure.” Subsequent disclosures from pro-Ukraine hacktivist
Hackers Trick Hawaiian Airlines – FBI on the Case
Overview Between 23–27 June 2025, Hawaiian Airlines reported a cybersecurity incident now attributed to Scattered Spider, a sophisticated threat group known for social engineering, MFA
Data Breach of Civil Aviation Authority of Papua New Guinea
Overview On 30 May 2025, a threat actor claimed to have exploited a SQL injection vulnerability in the Civil Aviation Authority of Papua New Guinea
Alleged Airport Code Database Leak on Dark Web
Overview On 22 June 2025, cyber threat researchers identified a claim by a group calling itself “Weewoo” that they had successfully exfiltrated and leaked data
Admin Access to Aviation Maintenance Firm Offered for Sale on Dark Web Targeted Exposure of Critical Aviation Infrastructure
Overview On 21 June 2025, our cyber threat monitoring team has flagged a dark web post advertising unauthorized admin access to a company operating in
Latest Resources Available
Part-IS Compliance Toolkit and Templates
Part-IS Compliance Toolkit
The Ultimate Solution for a Secure and Compliant ISMS with 80+ documents, with hundreds of pages of
- ISMS Documentation
- Risk Assessment Tools
- Organisation IT and Aviation policies
- Management guides
