Airline Reveals ‘No Fly List’ On Unsecured Server

A Frontier Airlines plane approaches the runway at Ronald Reagan Washington National Airport (DCA) in Arlington, Virginia, on April 2, 2022. (Photo by Daniel SLIM / AFP) (Photo by DANIEL SLIM/AFP via Getty Images)

At a glance

  • An unsecured server discovered by a security researcher last week contained the identities of hundreds of thousands of individuals from the U.S. government’s Terrorist Screening Database and “No Fly List.”
  • Located by the Swiss hacker known as maia arson crimew, the server, run by the U.S. national airline CommuteAir, was left exposed on the public internet. It revealed a vast amount of company data, including private information on almost 1,000 CommuteAir employees.
  • Analysis of the server resulted in the discovery of a text file named “NoFly.csv,” a reference to the subset of individuals in the Terrorist Screening Database who have been barred from air travel due to having suspected or known ties to terrorist organizations.

Top News Stories

You May Like: