Las Vegas, 13 Aug, A Cybersecurity solution provider Pen Test Partners have fixed the digital vulnerability on the Boeing aircraft computer system that could allow the hackers to run a malicious code, modify data and cause pilots to make dangerous miscalculations.
The security gaps in the older version of Boeing”s Onboard performance tool could make it susceptible to attack by Hackers.
Digital Vulnerability on Boeing planes that could be hacked is Fixed
Older versions of a digital tool used to calculate landing and takeoff speeds on some aircraft could be tampered with by hackers with direct access to an “Electronic Flight Bag,” or EFB, a tablet device used by pilots to plan flights, Pan test partners said in a report.
While the likelihood of exploiting such gaps is low given existing regulations governing the use and employment of EFBs and Crew Resource Management procedures. Still, if data modification occurs, and the resulting miscalculations are not detected during the crew’s required cross-check or verification process, an aircraft could land on a runway too short or take off at incorrect speeds potentially resulting in a tail strike or runway excursion.
Boeing has released a new software update and SBs to operators to enhance the security features. It is crucial that operators employing EFB solutions implement physical access control.
What is OTP?
Onboard Performance Tool or OTP is used by pilots to calculate the landing and takeoff speed of certain Boeing planes.
This tool is Very critical as it helps pilots avoid running out of runway, optimize braking, and to calculate V speeds during Takeoff.
OPT is deployed to a pilot’s electronic flight bag and receives regular updates to its airport database.
Details about airfields, their runways, obstacles, and other performance calculation factors (like engine type) are stored in SQLite databases alongside the OPT application. Aircraft operators can take a feed from Boeing directly, or in some cases generate their own databases with custom software.
OPT itself is commonly found on iPad-style devices but we have seen OPT in use on ruggedized Windows laptops and tablets as well.
To learn more in-depth about the software vulnerability in Boeing planes check this post by Pen partners.
Boeing statement over Vulnerability
They have thanked Pen test Partners for their solutions and stated,
Boeing would like to thank Pen Test Partners for their research, professionalism and collaboration. we welcomes future engagement by PTP and other security researchers, and is committed to evaluating any original findings when disclosures are conducted and shared in a responsible and coordinated manner. our company encourages security researchers or others in the community who have identified security issues to utilize Boeing’s VDP.Boeing ststement
It’s better to be safe than sorry, Boeing software updates can save millions of lives. such software glitches are addressed way before they can become a threat.
Join Our Telegram Group for Latest Aviation Updates:-https://t.me/aviationa2z
Stay connected with Aviation A2Z!