Airbus
Company Details
Linkedin ID:
airbusgroup
Website:
Employees number:
81,999
Number of followers:
2,558,472
NAICS:
3364
Industry Type:
Homepage:
airbus.com
IP Addresses:
81
Company ID:
AIR_2222341
Scan Status:
Completed
Airbus Company CyberSecurity Posture
airbus.com
Airbus pioneers sustainable aerospace for a safe and united world. The Company constantly innovates to provide efficient and technologically-advanced solutions in aerospace, defence, and connected services. In commercial aircraft, Airbus designs and manufactures modern and fuel-efficient airliners and associated services. Airbus is also a European leader in space systems, defence and security. In helicopters, Airbus provides efficient civil and military rotorcraft solutions and services worldwide.
Airbus A.I CyberSecurity Scoring
Airbus Risk Score (AI oriented)Between 800 and 849
Airbus
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Airbus Global Score (TPRM)XXXX
Airbus
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Airbus Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Airbus
Vulnerability
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote code execution with root or SYSTEM privileges. Organizations using Wing FTP Server for file transfer operations include major corporations such as Airbus, indicating the potential for significant impact across critical infrastructure sectors.
Airbus Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Airbus
Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)
Airbus has 78.57% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Airbus has 53.85% more incidents than the average of all companies with at least one recorded incident.
Incident Types Airbus vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)
Airbus reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 1 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — Airbus (X = Date, Y = Severity)
Airbus cyber incidents detection timeline including parent company and subsidiaries
Airbus Company Subsidiaries
Airbus pioneers sustainable aerospace for a safe and united world. The Company constantly innovates to provide efficient and technologically-advanced solutions in aerospace, defence, and connected services. In commercial aircraft, Airbus designs and manufactures modern and fuel-efficient airliners and associated services. Airbus is also a European leader in space systems, defence and security. In helicopters, Airbus provides efficient civil and military rotorcraft solutions and services worldwide.
Loading...
Airbus Similar Companies
We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve
SpaceX
SpaceX designs, manufactures and launches the world’s most advanced rockets and spacecraft. The company was founded in 2002 by Elon Musk to revolutionize space transportation, with the ultimate goal of making life multiplanetary. SpaceX has gained worldwide attention for a series of historic mil
CAE
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security fo
Spirit AeroSystems defines and energizes modern aerospace manufacturing by delivering uncompromising quality, breakthrough innovations and high-skilled production expertise to commercial, defense and business aerospace programs. Spirit AeroSystems is the world’s largest tier-one manufacturer and sup
Airbus Helicopters
Airbus is a leader in designing, manufacturing and delivering aerospace products, services and solutions to customers on a worldwide scale. Airbus strives to provide the most efficient helicopter solutions to its customers who serve, protect, save lives and safely carry passengers in demanding envi
B/E Aerospace
B/E Aerospace is now part of Rockwell Collins. With the acquisition of B/E Aerospace in April 2017, Rockwell Collins is now a world leader in designing, developing and manufacturing cabin interior products and services that deliver innovation, reliability and efficiency. Our broad range of offeri
Federal Aviation Administration
The FAA is on the leading edge of a new frontier in commercial space transportation, building the next generation (NextGen) of satellite-based navigation systems, and fostering the safe integration of unmanned aerial systems into our airspace. We can only dream of what the next 50 years of American
Safran
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran
NASA - National Aeronautics and Space Administration
For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to e
.png)
Airbus CyberSecurity News
November 22, 2025 11:02 PM
Atos shares sink as Airbus ends talks to buy BDS cybersecurity arm
By Olivier Sorgho, Tim Hepher and Mathieu Rosemain PARIS (Reuters) -Airbus has called off talks to buy the BDS cybersecurity unit of France's Atos,...
November 13, 2025 08:00 AM
Combating information warfare: How Airbus is helping win the fight for the truth
In today's world, information warfare and disinformation are all too common. The Airbus-lead EUCINF project supports the fight for the...
November 06, 2025 08:00 AM
Airbus eyes Atos’s cybersecurity unit amid growing EU tech rivalry
According to BFM TV, Airbus has been evaluating Atos's BDS cybersecurity arm in recent weeks, though no full acquisition of Atos is planned. The...
September 29, 2025 07:00 AM
Cork port comes under simulated cyberattack in Airbus-designed drill involving the Irish Navy
Irish Naval Service, MTU and NMCI join forces to strengthen cybersecurity and protect vital maritime infrastructure.
July 18, 2025 07:00 AM
Next-gen aerospace cybersecurity to be developed in UK with Airbus
This project aims to enhance aerospace cybersecurity by strengthening resilience and protecting infrastructure from cyber threats.
July 14, 2025 07:00 AM
Cybersecurity training platform to support French Armed Forces under Airbus contract
Airbus Defence and Space won an 8-year contrfact from the French Directorate General of Armaments (DGA) to develop and maintain cyber training platforms.
July 14, 2025 07:00 AM
Airbus to Train Cybersecurity Specialists for French Armed Forces
A framework contract to provide training and education for all cybersecurity personnel within the Ministry of the Armed Forces, including cyber operatives in...
July 14, 2025 07:00 AM
Airbus to Train Cybersecurity Experts for French Ministry of the Armed Forces - APDR
Airbus' CyberRange platform, already used in government and education sectors, will support large-scale exercises like Orion and DefNet. Airbus...
July 11, 2025 07:00 AM
Airbus to train cybersecurity experts for the French Ministry of the Armed Forces
The French Directorate General of Armaments (DGA) has signed with Airbus Defence and Space and launched a framework contract for the training and education of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Airbus CyberSecurity History Information
Official Website of Airbus
The official website of Airbus is http://www.airbus.com.
Airbus’s AI-Generated Cybersecurity Score
According to Rankiteo, Airbus’s AI-generated cybersecurity score is 821, reflecting their Good security posture.
How many security badges does Airbus’ have ?
According to Rankiteo, Airbus currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Airbus have SOC 2 Type 1 certification ?
According to Rankiteo, Airbus is not certified under SOC 2 Type 1.
Does Airbus have SOC 2 Type 2 certification ?
According to Rankiteo, Airbus does not hold a SOC 2 Type 2 certification.
Does Airbus comply with GDPR ?
According to Rankiteo, Airbus is not listed as GDPR compliant.
Does Airbus have PCI DSS certification ?
According to Rankiteo, Airbus does not currently maintain PCI DSS compliance.
Does Airbus comply with HIPAA ?
According to Rankiteo, Airbus is not compliant with HIPAA regulations.
Does Airbus have ISO 27001 certification ?
According to Rankiteo,Airbus is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Airbus
Airbus operates primarily in the Aviation and Aerospace Component Manufacturing industry.
Number of Employees at Airbus
Airbus employs approximately 81,999 people worldwide.
Subsidiaries Owned by Airbus
Airbus presently has no subsidiaries across any sectors.
Airbus’s LinkedIn Followers
Airbus’s official LinkedIn profile has approximately 2,558,472 followers.
NAICS Classification of Airbus
Airbus is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.
Airbus’s Presence on Crunchbase
No, Airbus does not have a profile on Crunchbase.
Airbus’s Presence on LinkedIn
Yes, Airbus maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/airbusgroup.
Cybersecurity Incidents Involving Airbus
As of December 10, 2025, Rankiteo reports that Airbus has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Airbus has an estimated 2,675 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Airbus ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does Airbus detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with disabling or restricting http/https access to the wing ftp web portal, containment measures with disabling anonymous login functionality, containment measures with monitoring session directories for suspicious .lua files, containment measures with implementing network segmentation to limit exposure, and remediation measures with upgrading to wing ftp server version 7.4.4 or later, and communication strategy with vendor has reportedly contacted customers via email with upgrade guidance, and network segmentation with implementing network segmentation to limit exposure, and enhanced monitoring with monitoring session directories for suspicious .lua files..
Incident Details
Can you provide details on each incident ?
Title: Active Exploitation of CVE-2025-47812 in Wing FTP Server
Description: A critical vulnerability in Wing FTP Server, tracked as CVE-2025-47812, is being actively exploited. The flaw allows unauthenticated remote code execution with root or SYSTEM privileges.
Date Detected: 2025-06-30
Date Publicly Disclosed: 2025-07-01
Type: Remote Code Execution
Attack Vector: Improper handling of null bytes in the Wing FTP Server’s web interface
Vulnerability Exploited: CVE-2025-47812
Motivation: Gain complete control over the system
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Anonymous FTP accounts.
Impact of the Incidents
What was the impact of each incident ?
Incident : Remote Code Execution AIR819071525
Systems Affected: Wing FTP Server installations
Which entities were affected by each incident ?
Incident : Remote Code Execution AIR819071525
Entity Name: ['Airbus', 'Reuters', 'U.S. Air Force']
Entity Type: Corporation
Industry: Aerospace, Media, Defense
Location: United StatesChinaGermanyUnited KingdomIndia
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Remote Code Execution AIR819071525
Containment Measures: Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure
Remediation Measures: Upgrading to Wing FTP Server version 7.4.4 or later
Communication Strategy: Vendor has reportedly contacted customers via email with upgrade guidance
Network Segmentation: ['Implementing network segmentation to limit exposure']
Enhanced Monitoring: Monitoring session directories for suspicious .lua files
Data Breach Information
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Upgrading to Wing FTP Server version 7.4.4 or later, .
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by disabling or restricting http/https access to the wing ftp web portal, disabling anonymous login functionality, monitoring session directories for suspicious .lua files, implementing network segmentation to limit exposure and .
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Remote Code Execution AIR819071525
Lessons Learned: Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What recommendations were made to prevent future incidents ?
Incident : Remote Code Execution AIR819071525
Recommendations: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..
References
Where can I find more information about each incident ?
Incident : Remote Code Execution AIR819071525
Source: Censys
Incident : Remote Code Execution AIR819071525
Source: Shadowserver Foundation
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: HuntressDate Accessed: 2025-07-01, and Source: Censys, and Source: Shadowserver Foundation.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Vendor Has Reportedly Contacted Customers Via Email With Upgrade Guidance.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Remote Code Execution AIR819071525
Entry Point: Anonymous FTP accounts
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Remote Code Execution AIR819071525
Root Causes: Improper handling of null bytes in Wing FTP Server’s web interface
Corrective Actions: Upgrading to Wing FTP Server version 7.4.4 or later
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Monitoring Session Directories For Suspicious .Lua Files, .
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Upgrading to Wing FTP Server version 7.4.4 or later.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-06-30.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-07-01.
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Wing FTP Server installations.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Huntress, Shadowserver Foundation and Censys.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Anonymous FTP accounts.
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=airbusgroup' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
