A recent report from Swiss web security company ImmuniWeb has found that almost all major airports have notable gaps in their cybersecurity systems, ranging from misconfigured public clouds, to code repository leaks, and vulnerable web and mobile applications. Said CEO and founder of ImmuniWeb Ilia Kolchecko in the report, “Given how many people and organizations entrust their data and lives to international airports every day, these findings are quite alarming.”
Among the most concerning findings was that nearly one out of four airports tested received an F grade in ImmuniWeb’s report for their main websites, indicating outdated software with known and exploitable security vulnerabilities was still in use. Roughly three quarters of sites were also found to not be compliant with GDPR, and about 25% lacked proper SSL encryption. A search of the Dark Web also found that roughly two thirds of airports had suffered recent leaks of confidential data.
Of the 100 airports tested, only Amsterdam Airport Schiphol, Helsinki-Vantaa Airport, and Dublin Airport passed without detection of a major issue.
Source:
