The security of personal data managed by airports
According to a study published by Immuniweb last week, 97% of the world's largest airports do not have the security systems needed to protect the personal data generated and used.
This does not look good in a context where almost all U.S. airports are now in the process of using facial recognition technology. Not only do security systems at its airports have serious security flaws, but it does not simply endanger airport data alone. passengers may also fall victim to potential problems related to mismanagement of personal information.
This article will also interest you: The Boeing aviator and its security flaws: the safety of civilian and military aircraft
Out of 100 airports, airports in Amsterdam Schiphol in the Netherlands, Helsinki-Vantaa in Finland and Dublin in Ireland have provided sufficiently reliable security to protect data that passes through their information system. According to the criteria ImmuWeb's IT security, these three airports scored the highest score and the institution's researchers meant that these airport structures must "serve example not only for the aviation industry, but also for all other industries. »
In practice, the ImmuWeb study highlighted the fact that 24% of airport companies use in the setting up of airports their system of operating outdated codes with security flaws already known and usable. In addition, 25% of them do not use SSL encryption and generally use the SSLv3, which has already been out of date since long. To make matters worse, 76% of the airports surveyed are not in good standing general regulation of personal data, and standards of personal data standard security in banking data.
at mobile applications used in the 97% of the airports involved, the finding is that same. According to ImmuWeb experts, 36 of them present a rather alarming case. all applications used at these airports without exception, present security vulnerabilities that are already supposed to be fixed because they have been known for a long time. "On average, researchers also detected 15 safety problems or privacy by application, and found that 33.7% of do not encrypt outbound communications. Across all applications examined, so there are more than 500 security and security issues confidentiality that have been found. ImmuWeb's report stated.
While doing a tour on the dark web, he was discovered by researchers that 66% of the airports that were examined are indeed exposed to a in any way on the hidden networks of the Internet. Experts were able to discover that 13 airports were able to present critical data leaks, involving passports, words of information for production systems, financial records…
And in fact, it has been revealed that some airports tend to store information sensitive on public cloud that do not have sufficient means of protection to protect its data.
In view of its rather worrying results, Ilia Kolochenko, the first head of ImmuWeb, will note: "Given the number of people and organizations who entrust their data and their lives to international airports every day, these results are rather alarming. Being a regular traveler, I prefer to travel via airports that care about cybersecurity. ».
Now access an unlimited number of passwords: