PigeonAir, a fictional commercial airline featured in the Tracer FIRE 12 cybersecurity competition, experienced a simulated series of cyberattacks targeting its operations, electric aircraft development, and cryptocurrency systems. The scenario involved security breaches requiring forensic investigation, where participants analyzed compromised systems using open-source tools to assess damage, recover data, and mitigate future risks. The attacks mirrored real-world threats, integrating vulnerabilities in cloud infrastructure, operational technology (OT), and traditional IT systems, potentially exposing sensitive corporate and customer data. The breach scenario implied risks such as disruption of flight operations, financial fraud via cryptocurrency manipulation, and intellectual property theft (e.g., electric aircraft designs). While the exercise was hypothetical, the modeled impact aligned with high-stakes cyber threats that could cripple an airline’s reputation, financial stability, and operational continuity. The involvement of Sandia National Laboratories (a U.S. DOE entity) underscored the scenario’s relevance to critical infrastructure protection, suggesting the attack could escalate to nationally significant consequences if replicated in reality.
Source: https://erau.edu/hub-spoke/stories/tracer-fire-12-cybersecurity-conference
TPRM report: https://www.rankiteo.com/company/anovium
"id": "ano4324643102725",
"linkid": "anovium",
"type": "Cyber Attack",
"date": "10/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': ['aviation',
'electric aircraft',
'cryptocurrency'],
'name': 'PigeonAir (fictional)',
'type': 'commercial airline'},
{'industry': 'higher education',
'location': 'Prescott, Arizona, USA',
'name': 'Embry-Riddle Aeronautical University '
'(Prescott Campus)',
'type': 'educational institution'},
{'industry': ['national security',
'energy',
'cybersecurity'],
'location': 'Albuquerque, New Mexico, USA',
'name': 'Sandia National Laboratories',
'type': 'government research laboratory'}],
'attack_vector': ['cloud vulnerabilities',
'operational technology (OT) exploits',
'traditional computing resource attacks',
'cryptocurrency-targeted breaches'],
'date_publicly_disclosed': '2024-10-25',
'description': 'The Tracer FIRE 12 competition, hosted by Embry-Riddle '
'Aeronautical University’s Prescott Campus and organized by '
'Sandia National Laboratories (October 25-27, 2024), featured '
'a fictional cyberattack scenario targeting PigeonAir, a '
'commercial airline. The scenario involved attacks on electric '
'aircraft development and cryptocurrency systems, with '
'participants investigating breaches using open-source tools, '
'assessing damage, and providing recovery/recommendations to '
'PigeonAir’s oversight board. The training scenario was '
'inspired by real-world and anticipated attacks, integrating '
'cloud, operational technology (OT), and traditional computing '
'resources.',
'impact': {'systems_affected': ['fictional PigeonAir airline systems',
'electric aircraft development infrastructure',
'cryptocurrency platforms']},
'initial_access_broker': {'high_value_targets': ['electric aircraft '
'development data',
'cryptocurrency systems']},
'investigation_status': 'Completed (training exercise)',
'lessons_learned': ['Hands-on experience is critical for cybersecurity skill '
'development (per Tyler Morris, Sandia National '
'Laboratories).',
'Integration of cloud, OT, and traditional computing in '
'attack scenarios reflects modern IT complexities.',
'Collaboration between government labs (Sandia) and '
'academic institutions (Embry-Riddle) enhances training '
'effectiveness.',
'Scenario-based training prepares participants for '
'real-world incidents in aviation and cryptocurrency '
'sectors.'],
'motivation': ['training',
'education',
'skill development for cybersecurity incident responders '
'(CSRIs)'],
'post_incident_analysis': {'corrective_actions': ['Participant '
'recommendations provided '
'to PigeonAir oversight '
'board (simulated).'],
'root_causes': ['Fictional scenario designed to '
'mimic real-world attack vectors '
'(cloud, OT, cryptocurrency).']},
'recommendations': ['Expand participation to more universities and industry '
'partners.',
'Incorporate emerging technologies (e.g., AI, quantum '
'computing) in future scenarios.',
'Strengthen public-private partnerships for cybersecurity '
'workforce development (per Dr. Krishna Sampigethaya).',
'Encourage internship/hiring pipelines for top performers '
'(e.g., Sandia’s Tracer FIRE internship program).'],
'references': [{'source': 'Embry-Riddle Aeronautical University News'},
{'source': 'Sandia National Laboratories - Tracer FIRE '
'Program'}],
'response': {'communication_strategy': ['post-event debrief',
'participant feedback',
'public disclosure via Embry-Riddle '
'press release'],
'incident_response_plan_activated': True,
'remediation_measures': ['participant recommendations to '
'PigeonAir oversight board'],
'third_party_assistance': ['Sandia National Laboratories',
'participating universities (Arizona '
'State University, New Mexico '
'Institute of Mining and Technology, '
'University of Nevada, Las Vegas, '
'Yavapai College)']},
'stakeholder_advisories': ['U.S. Department of Energy (DOE) - program sponsor',
'Participating universities (Arizona State '
'University, New Mexico Institute of Mining and '
'Technology, University of Nevada, Las Vegas, '
'Yavapai College)',
'Embry-Riddle students and faculty',
'Sandia National Laboratories cybersecurity team'],
'title': 'Tracer FIRE 12 Cybersecurity Competition - PigeonAir Cyberattack '
'Scenario',
'type': ['cyberattack simulation',
'training exercise',
'forensic investigation']}