Cyber Espionage Group Targets Aviation Firms to Steal Map Data
A cyber espionage group is targeting aerospace and drone firms to steal GIS files, terrain models, and GPS data.
A cyber espionage campaign is currently targeting aerospace and drone manufacturing firms to exfiltrate sensitive geographic information. The attackers are specifically seeking GIS files, terrain models, and GPS data, likely to gain a detailed understanding of the operational environments and strategic capabilities of their targets.
The campaign is characterized by its quiet, persistent nature, focusing on compromising the networks of specialized aviation and drone operators. By stealing this proprietary mapping data, the threat actors aim to build a comprehensive picture of their adversaries' world view and operational reach, according to [Dark Reading].
Organizations in the aviation and defense sectors are advised to review their network access controls and monitor for unauthorized exfiltration of geospatial data. Security teams should prioritize the protection of sensitive design and mapping assets, as these appear to be the primary objectives of this ongoing espionage effort.