All Segments Of The Aviation Sector And Supply Chain Were Examined By The Report. Credit: Shutterstock

Cybersecurity expert company SecurityScorecard has given the commercial aviation industry a “B” grade for the global aviation sector, but danger remains with extended digital supply chains prone to weaknesses. 

But the sector is not uniform in its performance, with airlines scoring higher than some of their service providers like aviation-specific technology vendors. This poses a crucial third-party risk for customers. This isn’t a one-way street, however, with some airlines also posing third-party risks to vendors with lax security. 

Go deeper with GlobalData

Data Insights

The gold standard of business intelligence.

Find out more

“This research yielded three recent examples of breaches at airlines exposing information on their aerospace & aviation vendors,” SecurityScorecard revealed. 

“Software and other IT products and services in general enable as much as 75% of third-party breaches across all industries,” the reported noted. 

But along with supply chain and third-party risks, the 2024 landscape report noted that “aggressive nation-state threats” are the other key risk for airlines and the wider aviation sector. 

The analysis took account of 250 businesses from across the sector, including commercial airlines, manufacturers, MRO and service providers, and software and IT providers to the industry. 

How well do you really know your competitors?

Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.

Company Profile – free sample

Thank you!

Your download email will arrive shortly

Not ready to buy yet? Download a free sample

We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form

By GlobalData
Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

Although at least 70% of the companies and organisations measured scored “A” or “B” grades, the overall picture produced by the report is a worrying one, with 23% scoring “C” or below. 4% even scored the lowest grade available, “F”. 

There are clear disparities raised in the report, though. One example given is the wider performance of airlines (regardless of destination or consumer market). The better the overall business performance, the higher the airlines tended to score on their cybersecurity performance. But this did not follow budget lines; so low-cost carriers did not tend to perform any worse than other competitors. 

Geography was also cited as a key signifier, with Western European and Australian companies outperforming their Asian counterparts. 

A vulnerability was found in proprietary apps, with 34% of the lower-scoring companies having their grades pushed down by insecure apps. 

“The aviation industry operates on a complex web of partnerships, but a company’s security is only as strong as its weakest link. Our research shows airlines are flying blind on third-party risks. It’s time for the industry to take control and prioritise robust security measures across their entire ecosystem before turbulence turns into a disaster,” said SecurityScorecard’s Ryan Sherstobitoff.