This week Delta Airlines started to suffer from an attack which caused worldwide delays to flights. Although the source of this attack has not been found, it appears to be a concidence that Chinese government hackers just happened to be looking on the dark web for suggested hacks on Delta Airlines earlier this year.
In January a darknet black market run by Chinese state hackers published an advertisement for information and vulnerabilities in a long list of major airlines that included Delta Airlines, United Airlines, Japan Airlines, FedEx, and others.
According to Epoch Times the advertisement was under the “Air Attacks Infrastructure” category under the premium section of the online black market run by hackers who call themselves “Babylon APT.”
Darknet researcher, Ed Alexander, who runs the world’s largest known team of darknet cybercrime undercover investigators said that the full list of airlines included Delta Airlines, but noted this doesn’t necessarily mean the current outage is tied to the vulnerability posted for sale by the cybercriminals.
He said: “That is not to say that Babylon is not a part of it, but they certainly had some level of access.”
Babylon APT is run by Chinese military hackers who use it to resell information and access to critical networks after finishing contract cyberattacks under the Chinese regime. The hackers also offer mercenary cyberattacks on critical infrastructure, businesses, or personal networks. Their clients include foreign governments and organized gangs of cybercriminals.