Connect with us

Hi, what are you looking for?

Financial Source ReportFinancial Source Report

Tech News

Researchers say a bug let them add fake pilots to rosters used for TSA checks

A collection of warning signs, bugs, and notifications emulating malware or a cyber attack. The images are placed in a connected web against a blue background.
Illustration by Carlo Cadenas / The Verge

A pair of security researchers say they discovered a vulnerability in login systems for records that the Transportation Security Administration (TSA) uses to verify airline crew members at airport security checkpoints. The bug let anyone with a “basic knowledge of SQL injection” add themselves to airline rosters, potentially letting them breeze through security and into the cockpit of a commercial airplane, researcher Ian Carroll wrote in a blog post in August.

Carroll and his partner, Sam Curry, apparently discovered the vulnerability while probing the third-party website of a vendor called FlyCASS that provides smaller airlines access to the TSA’s Known Crewmember (KCM) system and Cockpit Access Security System (CASS). They found that…

Continue reading…

You May Also Like

Tech News

The PS5 Pro’s announcement yesterday wasn’t a surprise. What was a surprise was the price: at $699.99, it debuts as Sony’s most expensive console...

Editor's Pick

Chris Edwards Robert F. Kennedy Jr. writes in the Wall Street Journal that “Trump Can Make America Healthy Again.” I agree with Kennedy that...

Editor's Pick

In this exclusive StockCharts TV video, Joe discusses why he is a bottom-up technical analyst. He explains the difference between top-down and bottom-up analysis...

Editor's Pick

Colleen Hroncich While most children attend school in person Monday through Friday, recent EdChoice polling found that only half of parents would choose that...

Copyright © 2023 FinancialSourceReport.com All Rights Reserved.