Main Mexican airport confirms specialists are working to handle cyberattack

One of many highest-traffic airports in Mexico mentioned it’s responding to a cyberattack.

The Querétaro Intercontinental Airport — about three hours from Mexico Metropolis — confirmed stories that it had been attacked by hackers, posting a discover on social media websites that it had referred to as in specialists to assist handle the problem.

“We reported that we had a cyberattack incident and are working with specialists to handle this case. AIQ methods are working usually. The security of our passengers and operations stays our high precedence,” the airport mentioned, in accordance with a translation of the discover, posted Tuesday.

Over the past decade, Querétaro Intercontinental has develop into one of many busiest airports in Mexico, serving greater than 1.1 million passengers in 2022 and changing into a hub for cargo flights inside Mexico and to the U.S. and Europe.

Officers mentioned the cyberattack was traced again to an worker downloading a file containing malware.

The airport’s operational safety wasn’t compromised, and the response group had contained and remoted the assault, the officers mentioned, claiming that any info stolen was “within the public area.”

The airport notified “related authorities,” the discover mentioned.

On Monday, the LockBit ransomware gang took credit for the assault, threatening to leak the information on November 27.

The declare comes simply days after LockBit mentioned it stole info from multibillion-dollar airplane maker Boeing — which advised Recorded Future Information that it was investigating the incident.

When reached for followup, a spokesperson for Boeing mentioned no additional updates can be launched. LockBit this week eliminated Boeing from its leak web site and researchers from malware platform vx-underground claimed they spoke to members of the ransomware gang who mentioned negotiations with the corporate have been underway.

The aviation trade is often focused by cyberattacks. Air Canada and Air Europa have each handled incidents within the final month. Russia-based hackers beforehand inundated web sites for airports throughout the U.S. with distributed denial-of-service (DDoS) incidents.

European aerospace big Airbus mentioned in September that it was investigating a cybersecurity incident following stories {that a} hacker posted info on 3,200 of the corporate’s distributors to the darkish net.

Scandinavian Airways, India’s SpiceJet, and Air India have all confronted cybersecurity incidents in recent times. Jeppesen, a completely owned Boeing subsidiary that gives navigation and flight planning instruments, confirmed final November that it was coping with a cybersecurity incident that precipitated some flight disruptions.

Accelya, a expertise supplied for a lot of massive airways, mentioned final yr that it skilled a ransomware assault tied to the BlackCat group and final August, Bangkok Airways mentioned that hackers stole passenger info throughout a safety breach following a ransomware incident.