ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "More Than Turbulence - Aviation Software Vulnerabilities & Exploitation Podcast with Cyber Senate and Chris Kubecka CEO of Hypasec"
Episode Synopsis
The Cyber Senate welcome special guest, Chris Kubeck, CEO of Hypasec, who will be speaking on our 3rd annual Aviation Cybersecurity Summit in London on November 5/th and 6th. www.aviationcybersec.comHer presentation: More Than Turbulence- Aviation Software Vulnerabilities & ExploitationIntroductions to the challenges of modern aviation and technologyMaintenance and asset managementFAA requirements and recalls -Weaknesses in exposure of various parts databases - Lack of required security testing by FAA on maintenance software Software utilized in a modern airframe -Explanation of what types of software is in use on both planes and weight balancing Buffer overflows, the FAA requires memory checks to ensure they stay within hardware operating parameters. But, no full boundary checks. Explanation of current challenges: F35a has buffer overflow issues requiring a manual reboot of the flight computer, in-flightGate logic doesn't equal good code or secure code: explanation of how the software is written whilst pointing out memory leaks, incompatibility with ease of patching unless substantial downtime (except the 787) and the lack of any security testing for any aviation software on a plane.Exposure of various airframe manufacturer systems.Exposure of various airport ticketing and maintenance systems
More episodes of the podcast Cyber Senate Podcast
Investing in Cybersecurity: The ROI Dilemma
17/12/2024
NIS 2 legistlation and Supply Chain Risk Management for Railways interview with NS Rail Deputy CISO
03/05/2024
Securing and Simplifying Privileged Remote Operations in the Rail Industry interview with Cyolo
03/05/2024
Rail Cybersecurity with DB Regio AG
03/05/2024
In God we trust