NZ$ 0.00
Customer Panel
Non-secure Internet use on the aircraft
08-01-2015 10:31:55One of the largest providers of in-flight Internet service is accused of using methods similar to man-in-the-middle attacks. The company issued fake SSL certificates. Gogo explained that they were intended primarily for transmitting and downloading heavy files.
Andrienne Porter Felt, Google security engineer, first discovered the SSL certificate issue during a recent flight. She tried to use YouTube and other Google sites. She noticed that the SSL certificate was not issued by Google, but rather by Gogo. She publicly called out Gogo about her finding on Twitter, “Hey, @Gogo, why are you issuing *.google.com certificates on your planes?”
In a statement, Gogo said that takes their customer’s privacy very seriously and any actions contribute to the increase of Internet bandwidth. Such actions raise a reasonable doubt as to the ethicality of interference in the transmitted data and the purpose for which it is carried out.
****
A man-in-the-middle attack is a type of cyber attack where a malicious actor inserts him/herself into a conversation between two parties, impersonates both parties and gains access to information that the two parties were trying to send to each other.
****
The company Gogo is one of the largest providers of in-flight Internet service and the pioneer of wireless solutions in the field of digital entertainment during flights. The company is rapidly expanding its range of action. Providing Internet services on board the aircraft during flight can maintain contact with the world.
Recent Posts
Comodo is now Sectigo
09-11-2018 12:54:30
According to previous announcements, a year after the acquisition of Comodo Group by Francisco Partners, on November 1 Comodo CA announced that from now on it is changing its brand to Sectigo [pronounced. sec-tee-go]. The goal of rebranding is consistency in company communication and better dedication to what Comodo is doing now.
European Cyber Security Month 2018
27-09-2018 10:46:21
The European Union Agency for Network and Information Security (ENISA), which is the center of knowledge about cyber security in Europe, organizes as every year in October the European Cyber Security Month. The campaign is starting in a few days. What is its purpose and how can you participate in it?
GDPR and SSL certificate. Is encryption necessary for compliance with the GDPR?
18-05-2018 15:47:40
General Data Protection Regulation (GDPR) is a 99-article regulation meant to protect the private data of Europeans in IT systems. Announced in 2016, covers a broad variety of topics and will go into effect as a requirement on May 25, 2018. GDPR applies to any company doing business in Europe even if it is located elsewhere.
