Cybersecurity in Aviation

    Most of us believe that technology is meant to help people live more efficiently, conveniently, and safely. However, we also realize that when used with malicious intent, technology can be powerful and dangerous. I mean, we all love technology. But it’s not all unicorns and intelligent assistants. Some skeptics argue that AI can be harmful and choose not to use it. And honestly, I understand their perspective. Artificial intelligence, like all forms of technology, has great potential for misuse. But during my research, I was pretty surprised by how many threats I had not yet heard of—particularly involving airplanes (yes, plural). One specific threat to aviation that I was unaware of until my own investigation was cyberattacks.

    Cyber threats to aviation are rising, targeting airport systems, flight software, ATC, and more. As AI advances, attackers become more sophisticated, using ransomware, deepfakes, and phishing to disrupt services or breach data from anywhere. TSA counters with layered security measures like passenger vetting, random screening, behavior detection, and air marshals.

    Generally, an extensive network like airports and airplanes has great potential and would need a strategy with multiple, distinct security layers. This multi-layered approach is what TSA has been using. Similar to many complex networks, these strategies have effectively defended against traditional physical threats. However, it is the newer layers, some of which are already in place but require improvement, that we should focus on for cyber threats: passenger vetting could be expanded to include digital identity verification, randomized screening could incorporate surprise cyber audits, and behavior detection could monitor unusual digital access that might indicate insider threats. Cybersecurity is currently mainly in the hands of airlines and airport IT departments, rather than the TSA. This is an area that requires immediate attention.

    Airports and airlines have cyber protection teams that ensure safety through multi-factor authentication, network segmentation, and employee training on recognizing malicious activity (training only covers physical aspects, such as what to look for when watching passengers). These are all good practices and serve as the first line of defense, but they won't protect us from AI attacks or deepfake impersonations. Additionally, airports and airlines have cybersecurity teams that patch system vulnerabilities; these teams also train and educate employees and passengers on cyber risks and provide extra education on phishing scams. TSA regulations and guidelines also mandate cybersecurity as part of their airport and airline certification process.

    The threat may have increased, requiring more cohesive standards. Many cyberattack successes result from poor TSA and airport cybersecurity coordination. Airports and airlines have cybersecurity teams enforcing access protocols for data security. Layers can be added to TSA's cybersecurity, with many already overlapping with airline and airport systems, which need expansion and prioritization. Currently, some cybersecurity layers are mislabeled as physical security due to limited TSA regulations.

     Technology, in and of itself, is not dangerous, and we want it to continue innovating. I use AI daily to help keep my life running more smoothly. It’s not an “if” threat to the aviation sector; it’s a “when,” and the sooner we can understand and coordinate with all relevant agencies, such as TSA, to update us on the reality of cyber threats, the better we can combat and stay ahead of them. This increases our chances of preventing a crisis. It might seem like something only government agencies or the CIA can handle, but many of these aviation employees are everyday people just like us. We can keep their families safe and trustworthy by helping them stay informed, voting, and speaking up when legislation does not include a comprehensive, coordinated approach to cybersecurity. We can also hold technology companies to a higher standard for privacy and the ethical use of AI.

References

Aviation cybersecurity 2025: How Airlines fight 131% surge in cyber attacks. Axis Intelligence. (2025, September 17). https://axis-intelligence.com/aviation-cybersecurity-2025-threats-defense/

Davies, N. (2025, June 13). Cybersecurity in aviation: Rising threats and modernization efforts. Cybersecurity Conferences & News. https://www.secureworld.io/industry-news/aviation-cybersecurity-threats

Comments

Post a Comment

Popular posts from this blog

  For my recent event, I chose the December 2022 polar vortex.  I picked this event because the polar vortex is one of those events many people have heard of but do not fully understand its power or the domino effect it causes.  The event I chose to analyze affected air travel across the U.S. and was just an incredible event of changing aviation operations so quickly.  It was also a period of multiple interacting hazards, as snow, ice, and winds affected operations differently across locations.  In Seattle, there were low-visibility issues.  In the Midwest, airports were struggling to remove snow as it was piling up so quickly.  As a professional in the aviation industry, this event just reiterated to me that hazards frequently occur together, making aviation operations much more complicated than they already are.  The fundamental cause of this event was a disruption of the polar vortex.  The polar vortex is a circulation pattern that usually...
Read more

Boeing Ethical Controversies

      In recent years, Boeing has faced ethical controversies, with significant safety concerns surrounding its 737 MAX model. After two fatal crashes in 2018 and 2019, investigations revealed that Boeing had withheld critical safety information regarding the Maneuvering Characteristics Augmentation System (MCAS). In 2024, a mid-air emergency resurfaced safety concerns with new details of ignored internal warnings and an overreliance on FAA certification processes. In 2025, Boeing settled with the Department of Justice, with its CEO, Kelly Ortberg, acknowledging the missteps and committing to reforms. I picked this incident because it emphasizes the gravity of ethical and safety control in the aviation industry. The Boeing case goes above corporate decision-making failures and represents a breach of trust among manufacturers, regulators, and the flying public. It is a reminder that ethics in aviation is not just important; it is fundamental. I believe that ethics in ...
Read more