Airbus Helicopters
Company Details
Linkedin ID:
airbus-helicopters
Employees number:
12,531
Number of followers:
544,524
NAICS:
3364
Industry Type:
Homepage:
airbus.com
IP Addresses:
0
Company ID:
AIR_3222033
Scan Status:
In-progress
Airbus Helicopters Company CyberSecurity Posture
airbus.com
Airbus is a leader in designing, manufacturing and delivering aerospace products, services and solutions to customers on a worldwide scale. Airbus strives to provide the most efficient helicopter solutions to its customers who serve, protect, save lives and safely carry passengers in demanding environments. Its helicopters are in service across more than 150 countries worldwide, performing nearly every type of vertical flight task imaginable. The company’s product line offers the full spectrum of rotary-wing aircraft solutions for civil, government, military, law enforcement and parapublic uses.
Airbus Helicopters A.I CyberSecurity Scoring
Airbus Helicopters Risk Score (AI oriented)Between 750 and 799
Airbus Helicopters
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Airbus Helicopters Global Score (TPRM)XXXX
Airbus Helicopters
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Airbus Helicopters Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Airbus
Vulnerability
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote code execution with root or SYSTEM privileges. Organizations using Wing FTP Server for file transfer operations include major corporations such as Airbus, indicating the potential for significant impact across critical infrastructure sectors.
Airbus Helicopters Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Airbus Helicopters
Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)
No incidents recorded for Airbus Helicopters in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Airbus Helicopters in 2025.
Incident Types Airbus Helicopters vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)
No incidents recorded for Airbus Helicopters in 2025.
Incident History — Airbus Helicopters (X = Date, Y = Severity)
Airbus Helicopters cyber incidents detection timeline including parent company and subsidiaries
Airbus Helicopters Company Subsidiaries
Airbus is a leader in designing, manufacturing and delivering aerospace products, services and solutions to customers on a worldwide scale. Airbus strives to provide the most efficient helicopter solutions to its customers who serve, protect, save lives and safely carry passengers in demanding environments. Its helicopters are in service across more than 150 countries worldwide, performing nearly every type of vertical flight task imaginable. The company’s product line offers the full spectrum of rotary-wing aircraft solutions for civil, government, military, law enforcement and parapublic uses.
Loading...
Airbus Helicopters Similar Companies
Airbus
Airbus pioneers sustainable aerospace for a safe and united world. The Company constantly innovates to provide efficient and technologically-advanced solutions in aerospace, defence, and connected services. In commercial aircraft, Airbus designs and manufactures modern and fuel-efficient airliners
B/E Aerospace
B/E Aerospace is now part of Rockwell Collins. With the acquisition of B/E Aerospace in April 2017, Rockwell Collins is now a world leader in designing, developing and manufacturing cabin interior products and services that deliver innovation, reliability and efficiency. Our broad range of offeri
Spirit AeroSystems defines and energizes modern aerospace manufacturing by delivering uncompromising quality, breakthrough innovations and high-skilled production expertise to commercial, defense and business aerospace programs. Spirit AeroSystems is the world’s largest tier-one manufacturer and sup
NASA - National Aeronautics and Space Administration
For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to e
Bombardier
Bombardier is a global leader in aviation, focused on designing, manufacturing, and servicing the world's most exceptional business jets. Bombardier’s Challenger and Global aircraft families are renowned for their cutting-edge innovation, cabin design, performance, and reliability. Bombardier has a
CAE
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security fo
Safran
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran
Embraer
A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Sinc
We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve
.png)
Airbus Helicopters CyberSecurity News
November 13, 2025 08:00 AM
Combating information warfare: How Airbus is helping win the fight for the truth
In today's world, information warfare and disinformation are all too common. The Airbus-lead EUCINF project supports the fight for the...
October 10, 2025 07:00 AM
Airbus (EADSY): Company Profile, Stock Price, News, Rankings
Multinational aerospace giant Airbus is Europe's leading producer of commercial aircraft. However, it also manufactures helicopters,...
October 06, 2025 07:00 AM
Aeromissions Deciphers PART-IS Regulation: A Cybersecurity Imperative for Aviation
In a world where air safety increasingly relies on digital systems, the European Union Agency for...
October 03, 2025 07:00 AM
Internships in France
Join us as an intern in a vibrant environment. Collaborate with talented and inspired people who are as passionate about their job as they...
September 10, 2025 08:08 AM
Hanwha and ABS Partner to Drive U.S. Maritime Cybersecurity Standards
Hanwha Systems, Hanwha Ocean and Hanwha Power Systems sign joint research MOU with ABS to address U.S. maritime cyber regulations.
August 11, 2025 07:00 AM
From space to cybersecurity: 10 Luxembourg companies and their role in defence
Luxembourg contributes to defence through 109 companies specializing in cybersecurity, satellite communications, aerospace, and advanced...
August 07, 2025 10:36 AM
Shaping the wing of tomorrow
Shaping the wing of tomorrow. Capgemini and Airbus work together to create a digital smart factory solution – Digital Assembly for Wing (DAWN).
July 18, 2025 07:00 AM
Next-gen aerospace cybersecurity to be developed in UK with Airbus
Researchers from Swansea University in Wales and Airbus Defense and Space are partnering on R&D that explores how simulation technologies...
July 11, 2025 07:00 AM
Airbus to train cybersecurity experts for the French Ministry of the Armed Forces
The French Directorate General of Armaments (DGA) has signed with Airbus Defence and Space and launched a framework contract for the training and education of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Airbus Helicopters CyberSecurity History Information
Official Website of Airbus Helicopters
The official website of Airbus Helicopters is https://www.airbus.com/en/products-services/helicopters.
Airbus Helicopters’s AI-Generated Cybersecurity Score
According to Rankiteo, Airbus Helicopters’s AI-generated cybersecurity score is 780, reflecting their Fair security posture.
How many security badges does Airbus Helicopters’ have ?
According to Rankiteo, Airbus Helicopters currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Airbus Helicopters have SOC 2 Type 1 certification ?
According to Rankiteo, Airbus Helicopters is not certified under SOC 2 Type 1.
Does Airbus Helicopters have SOC 2 Type 2 certification ?
According to Rankiteo, Airbus Helicopters does not hold a SOC 2 Type 2 certification.
Does Airbus Helicopters comply with GDPR ?
According to Rankiteo, Airbus Helicopters is not listed as GDPR compliant.
Does Airbus Helicopters have PCI DSS certification ?
According to Rankiteo, Airbus Helicopters does not currently maintain PCI DSS compliance.
Does Airbus Helicopters comply with HIPAA ?
According to Rankiteo, Airbus Helicopters is not compliant with HIPAA regulations.
Does Airbus Helicopters have ISO 27001 certification ?
According to Rankiteo,Airbus Helicopters is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Airbus Helicopters
Airbus Helicopters operates primarily in the Aviation and Aerospace Component Manufacturing industry.
Number of Employees at Airbus Helicopters
Airbus Helicopters employs approximately 12,531 people worldwide.
Subsidiaries Owned by Airbus Helicopters
Airbus Helicopters presently has no subsidiaries across any sectors.
Airbus Helicopters’s LinkedIn Followers
Airbus Helicopters’s official LinkedIn profile has approximately 544,524 followers.
NAICS Classification of Airbus Helicopters
Airbus Helicopters is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.
Airbus Helicopters’s Presence on Crunchbase
No, Airbus Helicopters does not have a profile on Crunchbase.
Airbus Helicopters’s Presence on LinkedIn
Yes, Airbus Helicopters maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/airbus-helicopters.
Cybersecurity Incidents Involving Airbus Helicopters
As of December 11, 2025, Rankiteo reports that Airbus Helicopters has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Airbus Helicopters has an estimated 2,678 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Airbus Helicopters ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does Airbus Helicopters detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with disabling or restricting http/https access to the wing ftp web portal, containment measures with disabling anonymous login functionality, containment measures with monitoring session directories for suspicious .lua files, containment measures with implementing network segmentation to limit exposure, and remediation measures with upgrading to wing ftp server version 7.4.4 or later, and communication strategy with vendor has reportedly contacted customers via email with upgrade guidance, and network segmentation with implementing network segmentation to limit exposure, and enhanced monitoring with monitoring session directories for suspicious .lua files..
Incident Details
Can you provide details on each incident ?
Title: Active Exploitation of CVE-2025-47812 in Wing FTP Server
Description: A critical vulnerability in Wing FTP Server, tracked as CVE-2025-47812, is being actively exploited. The flaw allows unauthenticated remote code execution with root or SYSTEM privileges.
Date Detected: 2025-06-30
Date Publicly Disclosed: 2025-07-01
Type: Remote Code Execution
Attack Vector: Improper handling of null bytes in the Wing FTP Server’s web interface
Vulnerability Exploited: CVE-2025-47812
Motivation: Gain complete control over the system
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Anonymous FTP accounts.
Impact of the Incidents
What was the impact of each incident ?
Incident : Remote Code Execution AIR819071525
Systems Affected: Wing FTP Server installations
Which entities were affected by each incident ?
Incident : Remote Code Execution AIR819071525
Entity Name: ['Airbus', 'Reuters', 'U.S. Air Force']
Entity Type: Corporation
Industry: Aerospace, Media, Defense
Location: United StatesChinaGermanyUnited KingdomIndia
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Remote Code Execution AIR819071525
Containment Measures: Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure
Remediation Measures: Upgrading to Wing FTP Server version 7.4.4 or later
Communication Strategy: Vendor has reportedly contacted customers via email with upgrade guidance
Network Segmentation: ['Implementing network segmentation to limit exposure']
Enhanced Monitoring: Monitoring session directories for suspicious .lua files
Data Breach Information
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Upgrading to Wing FTP Server version 7.4.4 or later, .
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by disabling or restricting http/https access to the wing ftp web portal, disabling anonymous login functionality, monitoring session directories for suspicious .lua files, implementing network segmentation to limit exposure and .
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Remote Code Execution AIR819071525
Lessons Learned: Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What recommendations were made to prevent future incidents ?
Incident : Remote Code Execution AIR819071525
Recommendations: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..
References
Where can I find more information about each incident ?
Incident : Remote Code Execution AIR819071525
Source: Censys
Incident : Remote Code Execution AIR819071525
Source: Shadowserver Foundation
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: HuntressDate Accessed: 2025-07-01, and Source: Censys, and Source: Shadowserver Foundation.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Vendor Has Reportedly Contacted Customers Via Email With Upgrade Guidance.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Remote Code Execution AIR819071525
Entry Point: Anonymous FTP accounts
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Remote Code Execution AIR819071525
Root Causes: Improper handling of null bytes in Wing FTP Server’s web interface
Corrective Actions: Upgrading to Wing FTP Server version 7.4.4 or later
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Monitoring Session Directories For Suspicious .Lua Files, .
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Upgrading to Wing FTP Server version 7.4.4 or later.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-06-30.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-07-01.
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Wing FTP Server installations.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Censys, Shadowserver Foundation and Huntress.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Anonymous FTP accounts.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=airbus-helicopters' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
