FlightAware
Company Details
Linkedin ID:
flightaware
Website:
Employees number:
135
Number of followers:
22,771
NAICS:
3364
Industry Type:
Homepage:
flightaware.com
IP Addresses:
8
Company ID:
FLI_3145064
Scan Status:
Completed
FlightAware Company CyberSecurity Posture
flightaware.com
FlightAware (flightaware.com) is the leading provider of real-time and historical flight information and insights to the global aviation community. FlightAware serves all segments of the aviation marketplace through best-of-breed applications and data services that provide comprehensive information about the current and predicted movement of aircraft. Through the collection, interpretation, and enrichment of hundreds of sources of data, including data from FlightAware’s own proprietary terrestrial ADS-B network spanning seven continents and in 200 countries and territories, the company is able to transform millions of raw flight data elements and deliver them as coherent, easy-to-consume flight stories. As a single source of accurate and actionable data for aviation players large and small, FlightAware is central to aviation. FlightAware is owned by Collins Aerospace (a Raytheon company) with headquarters in Houston and locations in New York, Austin, Singapore, and London.
FlightAware A.I CyberSecurity Scoring
FlightAware Risk Score (AI oriented)Between 700 and 749
FlightAware
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
FlightAware Global Score (TPRM)XXXX
FlightAware
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
FlightAware Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
FlightAware, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The California Office of the Attorney General reported on August 13, 2024, that FlightAware, Inc. experienced a data breach due to a configuration error on July 25, 2024. The breach potentially exposed personal information, including user credentials and possibly Social Security Numbers. The number of affected individuals is currently unknown.
FlightAware Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for FlightAware
Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)
No incidents recorded for FlightAware in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for FlightAware in 2025.
Incident Types FlightAware vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)
No incidents recorded for FlightAware in 2025.
Incident History — FlightAware (X = Date, Y = Severity)
FlightAware cyber incidents detection timeline including parent company and subsidiaries
FlightAware Company Subsidiaries
FlightAware (flightaware.com) is the leading provider of real-time and historical flight information and insights to the global aviation community. FlightAware serves all segments of the aviation marketplace through best-of-breed applications and data services that provide comprehensive information about the current and predicted movement of aircraft. Through the collection, interpretation, and enrichment of hundreds of sources of data, including data from FlightAware’s own proprietary terrestrial ADS-B network spanning seven continents and in 200 countries and territories, the company is able to transform millions of raw flight data elements and deliver them as coherent, easy-to-consume flight stories. As a single source of accurate and actionable data for aviation players large and small, FlightAware is central to aviation. FlightAware is owned by Collins Aerospace (a Raytheon company) with headquarters in Houston and locations in New York, Austin, Singapore, and London.
Loading...
FlightAware Similar Companies
Safran
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran
CAE
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security fo
Spirit AeroSystems defines and energizes modern aerospace manufacturing by delivering uncompromising quality, breakthrough innovations and high-skilled production expertise to commercial, defense and business aerospace programs. Spirit AeroSystems is the world’s largest tier-one manufacturer and sup
NASA - National Aeronautics and Space Administration
For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to e
Textron Inc. is a multi-industry company that leverages its global network of aircraft, defense, industrial and finance businesses to provide customers with innovative solutions and services. Textron is known around the world for its powerful brands such as Bell, Cessna, Beechcraft, Pipistrel, Jacob
Federal Aviation Administration
The FAA is on the leading edge of a new frontier in commercial space transportation, building the next generation (NextGen) of satellite-based navigation systems, and fostering the safe integration of unmanned aerial systems into our airspace. We can only dream of what the next 50 years of American
We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve
Embraer
A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Sinc
Pratt & Whitney, an RTX business, is a global leader in propulsion systems, powering the most advanced aircraft in the world, and we are shaping the future of aviation. Our engines help connect people, grow economies and defend freedom. Our customers depend on us to get where they’re going and back
.png)
FlightAware CyberSecurity News
October 24, 2025 07:00 AM
Several Alaska Airlines flights canceled, delayed at Logan Airport due to IT outage
Several Alaska Airlines flights heading to and from Boston's Logan Airport were delayed or canceled due to a systemwide IT outage.
September 24, 2025 07:00 AM
United Airlines grounds ALL flights for second time in a month amid growing safety concerns
The airline asked the Federal Aviation Authority to issue a ground stop due to a technological issue overnight.
September 21, 2025 07:00 AM
Cyberattack Disrupts Major European Airports
Cyberattack Disrupts Major European Airports Hundreds of flights canceled as Collins Aerospace systems targeted, raising geopolitical...
September 21, 2025 07:00 AM
Major Airports in Europe Report Check-In Delays After Cyberattack
Flights were delayed in some European travel hubs, including the continent's busiest at Heathrow Airport near London, on Saturday,...
September 21, 2025 07:00 AM
Heathrow cyber-attack: Airports warn of second day of disruption
The issue affecting check-in and baggage systems caused hundreds of delays and cancellations on Saturday.
September 20, 2025 07:00 AM
Heathrow cyber-attack: Day of delays after airport check-in system hit
Heathrow was among several European airports hit by delays on Saturday after a cyber-attack affecting an electronic check-in and baggage...
September 20, 2025 07:00 AM
Heathrow and Other European Airports Hit by Cyberattack, Several Flights Delayed
A major cyberattack on a popular aviation software provider has caused significant disruptions at key European airports, including London's...
August 07, 2025 07:00 AM
United flights delayed, canceled at Burlington airport following system outage
United Airlines flights were grounded across the United States on Aug. 6. Here's how many were canceled or delayed at Burlington...
August 07, 2025 07:00 AM
More than 1,000 United Airlines flights delayed in the US due to technology problem
An alert on the Federal Aviation Administration website said all United flights destined for Chicago were halted at their departing...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
FlightAware CyberSecurity History Information
Official Website of FlightAware
The official website of FlightAware is http://flightaware.com/.
FlightAware’s AI-Generated Cybersecurity Score
According to Rankiteo, FlightAware’s AI-generated cybersecurity score is 734, reflecting their Moderate security posture.
How many security badges does FlightAware’ have ?
According to Rankiteo, FlightAware currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does FlightAware have SOC 2 Type 1 certification ?
According to Rankiteo, FlightAware is not certified under SOC 2 Type 1.
Does FlightAware have SOC 2 Type 2 certification ?
According to Rankiteo, FlightAware does not hold a SOC 2 Type 2 certification.
Does FlightAware comply with GDPR ?
According to Rankiteo, FlightAware is not listed as GDPR compliant.
Does FlightAware have PCI DSS certification ?
According to Rankiteo, FlightAware does not currently maintain PCI DSS compliance.
Does FlightAware comply with HIPAA ?
According to Rankiteo, FlightAware is not compliant with HIPAA regulations.
Does FlightAware have ISO 27001 certification ?
According to Rankiteo,FlightAware is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of FlightAware
FlightAware operates primarily in the Aviation and Aerospace Component Manufacturing industry.
Number of Employees at FlightAware
FlightAware employs approximately 135 people worldwide.
Subsidiaries Owned by FlightAware
FlightAware presently has no subsidiaries across any sectors.
FlightAware’s LinkedIn Followers
FlightAware’s official LinkedIn profile has approximately 22,771 followers.
NAICS Classification of FlightAware
FlightAware is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.
FlightAware’s Presence on Crunchbase
No, FlightAware does not have a profile on Crunchbase.
FlightAware’s Presence on LinkedIn
Yes, FlightAware maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/flightaware.
Cybersecurity Incidents Involving FlightAware
As of December 18, 2025, Rankiteo reports that FlightAware has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
FlightAware has an estimated 2,728 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at FlightAware ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: FlightAware Data Breach
Description: The California Office of the Attorney General reported on August 13, 2024, that FlightAware, Inc. experienced a data breach due to a configuration error on July 25, 2024. The breach potentially exposed personal information, including user credentials and possibly Social Security Numbers. The number of affected individuals is currently unknown.
Date Detected: 2024-07-25
Date Publicly Disclosed: 2024-08-13
Type: Data Breach
Attack Vector: Configuration Error
Vulnerability Exploited: Configuration Error
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FLI121072825
Data Compromised: User credentials, Social security numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are User Credentials, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach FLI121072825
Entity Name: FlightAware, Inc.
Entity Type: Company
Industry: Aviation
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FLI121072825
Type of Data Compromised: User credentials, Social security numbers
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach FLI121072825
Source: California Office of the Attorney General
Date Accessed: 2024-08-13
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2024-08-13.
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach FLI121072825
Root Causes: Configuration Error
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-07-25.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-08-13.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were User Credentials, Social Security Numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security Numbers and User Credentials.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=flightaware' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
