AerCap Sees Ransomware Attack | Aero-News Network
Aero-News Network
RSS icon RSS feed
podcast icon MP3 podcast
Subscribe Aero-News e-mail Newsletter Subscribe

Airborne Unlimited -- Most Recent Daily Episodes

Episode Date



Airborne-Wednesday Airborne-Thursday


Airborne On YouTube






Fri, Jan 26, 2024

AerCap Sees Ransomware Attack

Aircraft Lessor Hit with 1-Terabyte Hack from 'Slug' Group

AerCap confirmed a ransomware attack in a filing with the US Securities and Exchange Commission, stating that the firm was robbed of 1 terabyte of data by the "Slug" group.

The group has threatened to slowly trickle out releases of the data unless AerCap pays their ransom, setting a 2-week deadline to begin paying. The leak plans appear to have 5 gigabytes published after 3 days of non-payment, 30 gigs after a week, with the rest of the data published at the end of the 2-week term. No indication has been given of how much the ransom sits at.

Slug seemed like a small-timer at first, with only the AerCap caper to their hame,but things have a way of moving quickly in the ransomware space. Unlike the usual method of exploiting weaknesses and encrypting the data and systems of a target, Slug opted for a less invasive and hands-off method. They merely copied internal AerCap data without encrypting anything, allowing the firm to continue on with business as usual. (By ransomware standards, it's a courtesy, though the extortion angle mitigates the kindness quite a bit.) The only drive to enforce ransom payment is the fear of public disclosure of their internal documentation. The company hasn't been too noisy about the hack, and their tone so far appears nonplussed about the whole affair.

In their Form K-6 to the SEC, AerCap gave a brief overview of the event. "On January 17, 2024, we experienced a cybersecurity incident related to ransomware. We promptly took steps to investigate with the support of third-party cybersecurity experts and notified law enforcement. We have full control of all of our IT systems and to date, we have suffered no financial loss related to this incident. Our investigation into this incident, including the extent to which data may have been exfiltrated or otherwise impacted, remains ongoing."



More News

Kickstarting Your Aviation Journey at Oshkosh 2024

A Guide to Making the Most out of the World’s Biggest Airshow EAA’s Oshkosh Airventure generates fun for all aviation lovers. You get a chance to see, touch, and maybe >[...]

Aero-News: Quote of the Day (07.22.24)

"We're excited to offer our advanced avionics to a broader range of aircraft while maintaining our commitment to value. Twin-engine aircraft usually pay a significant premium to eq>[...]

Electric Power Systems Seeks TSO for Rechargeable Battery System

Modular, Scalable Lithium Battery System for Select Aircraft Electric Power Systems, Inc., announced that it has submitted its application to the FAA for a Technical Standard Order>[...]

Advanced Micro Turbines Find Footing in USA

350 Pound-feet of Thrust Now Available in a Small, Lightweight Package UAV Propulsion Tech signed an agreement with AMT-Advanced Micro Turbines to begin marketing their tiny little>[...]

Klyde Morris (07.22.23)

Klyde Provokes The Ultimate Oshkosh Invite... Sorta... FMI:>[...]

blog comments powered by Disqus





© 2007 - 2024 Web Development & Design by Pauli Systems, LC