SkyRadar Blog

Artificial intelligence (AI) has significantly transformed many industries, including air traffic management. For Air Traffic Safety Electronics Personnel (ATSEP), AI presents an opportunity to improve daily tasks and processes, boosting efficiency, safety, and reliability. However, this transition necessitates a thoughtful and strategic approach to maintain the integrity of air traffic systems.

The 2024 Thales Cloud Security Study provides a comprehensive overview of the current trends and challenges in cloud security. This report is relevant for Air Traffic Safety Electronics Personnel (ATSEP) involved in securing cloud environments. In this article, we present the key findings and offer actionable insights based on the study.

For about two decades, security leaders were told over and over by many vendors that the key to good security is setting up proper VPNs (virtual private networks) which promised encryption and protection against malicious actors. With the rise of remote work, global work forces, contractors and trusted 3rd parties having access to the company network, having the right solution in place, coupled with proper logging and monitoring, can help you detect any potential issues before they become a major incident.

In the vast expanse of the digital skies, where data streams intersect with the safety of millions of passengers daily, lies a realm of paramount importance: Air Traffic Control (ATC) cybersecurity. Ensuring the integrity, confidentiality, and availability of aviation systems is not just a matter of convenience; it's a matter of life and death. However, beneath the surface of this crucial field lies a concerning gap: the scarcity of qualified cybersecurity professionals with dedicated undergraduate, master's, and Ph.D. degrees tailored to the unique challenges of ATC.

On April 17-18, I had the privilege of attending a bi-national sector conference focused on addressing security and defense challenges related to space. The event was of significant national importance, underscored by the esteemed presence of Their Royal Highnesses Grand Duke Henri of Luxembourg (front left in the photo), King Philippe of Belgium (front middle), as well as the Luxembourgish and Belgian Ministers of Defense.

The keys to successful incident response equate to having the proper people, processes, and tools in place to act decisively when an incident occurs, which is a recurring theme in our incident response articles. Without proper logging occurring ahead of time, which is a large part of the picture for security operations and incident response, teams, it will make it difficult to prove how long a threat actor was in an environment, and depending on the lack of logs, could be very difficult to provide analysis on activities taken by the threat actors or insider threats depending on the case scenario.

This article sheds light on Firewall Logs in incident investigations. We explore key behaviors and patterns for effective threat detection

Background

Historically, security teams would advocate for their IT teams and management to approve the implementation of multi-factor authentication in order to reduce the impact of threats such as brute force attacks against passwords, mitigate fall out from phishing emails and other social engineering related attacks. For context, there are multiple methods of implementing two factor authentication, which includes but is not limited to, SMS based, voice and app based. Once an implementation is in place, this will provide security and incident response teams additional protection and more importantly, additional data points to investigate security alerts.

CASB solutions can help your business in addressing risk in cloud-based services, consistently enforce security policies and comply with regulations, even when these services reside beyond your perimeter and out of your direct control. The value stems from the ability to identify high-risk applications, users, and other key risk factors across cloud platforms - a potential blind spot for many businesses.