{"id":156191,"date":"2023-01-24T23:22:20","date_gmt":"2023-01-25T05:22:20","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2023\/01\/exclusive-u-s-airline-accidentally-exposes-no-fly-list-on-unsecured-server"},"modified":"2023-01-24T23:22:20","modified_gmt":"2023-01-25T05:22:20","slug":"exclusive-u-s-airline-accidentally-exposes-no-fly-list-on-unsecured-server","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2023\/01\/exclusive-u-s-airline-accidentally-exposes-no-fly-list-on-unsecured-server","title":{"rendered":"EXCLUSIVE: U.S. airline accidentally exposes \u2018No Fly List\u2019 on unsecured server"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/exclusive-u-s-airline-accidentally-exposes-no-fly-list-on-unsecured-server.jpg\"><\/a><\/p>\n<p>An unsecured server discovered by a security researcher last week contained the identities of hundreds of thousands of individuals from the U.S. government\u2019s Terrorist Screening Database and \u201cNo Fly List.\u201d<\/p>\n<p>Located by the Swiss hacker known as maia arson crimew, the server, run by the U.S. national airline CommuteAir, was left exposed on the public internet. It revealed a vast amount of company data, including private information on almost 1,000 CommuteAir employees.<\/p>\n<hr>\n<p>CommuteAir also confirmed the legitimacy of the data, stating that it was a version of the \u201cfederal no-fly list\u201d from roughly four years prior.<\/p>\n<p>\u201cThe server contained data from a 2019 version of the federal no-fly list that included first and last names and dates of birth,\u201d CommuteAir Corporate Communications Manager Erik Kane said. \u201cIn addition, certain CommuteAir employee and flight information was accessible. We have submitted notification to the Cybersecurity and Infrastructure Security Agency and we are continuing with a full investigation.\u201d<\/p>\n<p>CommuteAir is a regional airline based out of Ohio. In June 2020, CommuteAir replaced ExpressJet as the carrier for its United Express Banner, a regional branch of United, which runs shorter flights.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>An unsecured server discovered by a security researcher last week contained the identities of hundreds of thousands of individuals from the U.S. government\u2019s Terrorist Screening Database and \u201cNo Fly List.\u201d Located by the Swiss hacker known as maia arson crimew, the server, run by the U.S. national airline CommuteAir, was left exposed on the public [\u2026]<\/p>\n","protected":false},"author":534,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34,1490,418],"tags":[],"class_list":["post-156191","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode","category-government","category-internet"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/156191","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/534"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=156191"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/156191\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=156191"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=156191"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=156191"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}