Sofema Aviation Services (SAS) considers several examples of Cybersecurity Breaches Introduction The following examples illustrate how vulnerabilities, whether in operations, IT infrastructure, or third-party systems, can impact aviation safety, continuity, and reputation. British Airways Data Breach (2018) Type: Data Theft Impact: 500,000 customer records compromised Method: Injection of malicious code via third-party scripts on the website and mobile…

Sofema Aviation Services (SAS) Considers key issues related to the assessment of vulnerabilities within the operational supply chain Introduction To mitigate risks related to supply chain and IT infrastructure vulnerabilities in an EASA-compliant Information Security Management System (ISMS) under Regulation (EU) 2023/203, a structured and proactive approach is essential. Consider the following: Understanding the Nature…

Sofema Aviation Services (SAS) considers the challenges related to phishing, ransomware, data breaches, and insider threat exposures (both intentional and accidental) within the framework of an EASA Part 145 organization. Challenges in Cybersecurity for Part 145 Organizations EASA Part 145 organizations, as integral components of the aviation safety chain, face distinct challenges in managing information…