ICAO investigates potential data breach affecting thousands

Home
»
Stories
»
2025
»
January

GLOBAL INDUSTRY NEWS

Qatar Airways In Talks To Buy 20% Of Virgin Australia - Airline Ratings

Boeing Will Buy Spirit AeroSystems For $4.7 Billion In Stock & Airbus Enters $559 Million Agreement For Its Parts

Bombardier Global Jet Production Stops in Toronto as Union Workers Strike | AIN

Justice Department To Offer Boeing a Plea Deal Related to Max Crashes

Plane diverted to Brazil after turbulence injures 30

Global Industry News

ICAO investigates potential data breach affecting thousands

Policy

Simple Flying | Simple Flying

By Sky Industry News

Jan 7, 2025

The International Civil Aviation Organization (ICAO) is currently investigating a potential data breach that may have resulted in the theft of tens of thousands of records. The breach has been linked to a "threat actor known for targeting international organizations."

In an official statement, ICAO confirmed it is "actively investigating reports of a potential information security incident" that could have compromised personal data, including names and addresses. The agency stated it has implemented "immediate security measures" and is conducting a thorough investigation.

A spokesperson for ICAO informed Reuters via email that the investigation was initiated following claims made by a hacker on a forum, alleging the theft of up to 42,000 records in a recent breach. However, ICAO has refrained from providing further details at this stage, noting, "At this early stage of our investigation, we cannot provide additional details about the incident or confirm specific claims about the data potentially involved."

Get the Newsletter

Sign-up to receive weekly round up of news from Sky Industry News

By submitting, you agree to our Privacy Policy and Terms of Service. By providing your phone number you are opting in and consenting to receive recurring SMS/MMS messages, including automated texts, to that number from our short code. Msg & data rates may apply. Reply HELP for help, STOP to end. SMS opt-in will not be sold, rented, or shared.

This incident follows a previous hack in November 2016 attributed to 'Emissary Panda,' a group believed to be connected to Chinese intelligence. That breach was reportedly covered up by members of ICAO's ICT department and was criticized for its handling.

CyberDaily reported that the current data leak was posted on BreachForum by user 'natohub,' who claimed the stolen information includes names, birth dates, marital status, gender, addresses, emails, education, and employment details. Samples shared included ICAO employment forms and emergency contact information.

The account behind this post has also been linked to other breaches against United Nations entities and US military organizations last month. Another forum user claimed to have purchased the data being sold for "just a few euros," which allegedly contains 57,240 unique emails with 1,661 '.gov' domains.

The aviation industry faces increasing cybersecurity threats as reliance on digital systems grows. The Federal Aviation Administration (FAA) recently updated cybersecurity standards due to rising cyberattacks.

Past incidents include Seattle-Tacoma International Airport facing demands for $6 million in cryptocurrency after a data breach last year and Boeing being targeted by 'LockBit' ransomware gang demanding $200 million in October 2023.