In the last week, two EL AL flights heading to Israel faced attempts to hijack their communications systems, as reported locally. Both flights, originating from Thailand and bound for Israel’s Ben Gurion International Airport, encountered what were described as “hostile elements” while flying over the Middle East. The Jerusalem Post cited a report suggesting hackers sought to control the planes’ communication networks to divert them from their intended paths. While the region is known for Iranian-backed Houthi activity, some speculate the perpetrators may operate from Somaliland.
Fortunately, the pilots detected the unusual instructions and disregarded them, opting for alternative communication channels and confirming their flight paths with air traffic controllers. An EL AL representative highlighted the pilots’ training to identify and counter such threats while airborne. Despite the incident, the airline emphasized that it wasn’t a security breach and commended the pilots for maintaining the flight’s normal course through their swift action and adherence to procedures.
The attempted disruption underscores the ongoing cybersecurity challenges faced by the aviation sector, prompting regulatory bodies like the EU’s aviation safety agency EASA to enhance cybersecurity regulations. The release of Easy Access Rules (EAR) for Information Security aims to ensure comprehensive security measures across various aviation stakeholders, including suppliers, airlines, airports, and communication infrastructure providers. These regulations aim to fortify defenses against potential cyber threats and safeguard critical aviation operations from malicious actors seeking to exploit vulnerabilities in communication systems.
