A CNN considera o anúncio do DHS:
https://www.cnn.com/2019/07/30/politics/airplane-hacking-risk/index.html
Washington (CNN) Physical hacking of airplane electrical systems is a realistic possibility that could bring down aircraft, the Department of Homeland Security warned Tuesday.
The government said researchers at a cybersecurity firm identified ways an attacker could cause aircraft displays to show false "engine telemetry readings, compass and attitude data, altitude, airspeeds, and angle of attack."
"The researchers have further outlined that a pilot relying on instrument readings would be unable to distinguish between false and legitimate readings, which could result in loss of control of the affected aircraft," wrote the Cybersecurity and Infrastructure Security Agency, which is part of DHS.
Rapid7, the research firm, said it investigated the risks with small aircraft rather than larger commercial planes.
Hackers must have physical access to the aircraft, the company said. The attack involves physically plugging a malicious device into the electronics systems that increasingly control the displays and functions of modern aircraft.
Similar -- but more secure -- technology is used in cars. The Rapid7 researchers attributed that difference to the fact that "even small, personal aircraft are rarely parked in unmonitored, open areas like open parking lots or public streets," as is the case for cars.
The DHS notice recommended that "aircraft owners restrict access to planes to the best of their abilities" and that manufacturers review the security of their electronic systems, and consider using protections similar to those used in cars.
Neither the company nor DHS identified specific aircraft or manufacturers.
Artigo da CBS que foi divulgado, com uma foto dos Cessna 172s e outros aviões para iniciar:
Washington — The Department of Homeland Security (DHS) issued a rare security alert Tuesday for small planes. The alert warns if a hacker gained physical access to certain small planes, they could attach a common device to its wiring. This could provide false flight data including altitude and airspeed, as well as possible access to the autopilot system, potentially leaving a pilot unable to tell whether the reading was accurate and potentially lose control of the aircraft.
"We could do basically anything the plane can do, pretty much anything the pilot could do by himself," said Tod Beardsley, director of research at cyber security firm Rapid7.
In a laboratory setting, researchers at Rapid7 were able to hack what's essentially a plane's electronic central nervous system, allowing them to send the erroneous commands. "I do think it is something of a wake up call. This is something that needs to be taken seriously now rather than later, like after the disaster," Beardsley said.
Last year, Homeland Security researchers, who successfully hacked a 757 while it was parked, warned it's only "a matter of time before a cybersecurity breach on an airline occurs." DHS is now urging small plane makers to study the cyber security protections car makers added after hackers were able to exploit similar technology on the roads.
The Federal Aviation Administration tells CBS News a "scenario that involves unrestricted physical access is unlikely" but these findings are "an important reminder to remain vigilant." Rapid7 said it notified the company that built those two systems, but their findings prompted DHS to urge pilots to secure their aircraft and for manufacturers to take a look at options to better secure these systems.
Não vejo isso acontecendo com nada além dos grandes aviões que possuem sistemas automatizados.
A maioria dos aviões de suporte menores não possui controles automatizados, exceto o piloto automático - e isso é facilmente desligado pressionando um interruptor ou puxando o disjuntor do piloto automático. Nada que dados ruins em uma tela substituam. Os controles do motor são apenas manuais, portanto não haverá aviões caindo do céu. Há backups da velha escola para a maior parte do resto - altímetro alimentado de uma mangueira das portas estáticas, atitude do horizonte artificial de backup e coordenador de turnos, direção da bússola de uma bússola de uísque, velocidade do ar de uma mangueira do tubo de pitot, ângulo de ataque do horizonte artificial novamente. Nas leituras do motor, é possível observar os controles do motor e ver que não há nada de estranho: acelerador, RPM, mistura.
O DHS precisa ser mais responsável na descrição dos tipos de avião que podem ser afetados.