KlasJet A.I CyberSecurity Scoring
05/12/2025
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for KlasJet in 2026.
No incidents recorded for KlasJet in 2026.
No incidents recorded for KlasJet in 2026.
Iberia is Spain’s number-one airline group and the leader in the Europe-Latin America market, with the single greatest array of destinations and flight frequencies. Together with British Airways, we’re part of the IAG Group, with the third-highest receipts in Europe and sixth worldwide.. Iberia is also a founding member of the Oneworld Alliance, which offers passengers the best connections to around 700 destinations worldwide.
gategourmet has been serving the airline industry for more than 70 years and has become the world’s largest independent provider of airline catering and logistics. We prepare tens of thousands of tasty, nutritious passenger meals and snacks daily and reliably service more than 2 million flights a year in “last mile” operations worldwide. gategourmet is the core business behind gategroup, the leading independent global provider of products, services and solutions related to an airline passenger’s onboard experience. Our 27,000 employees work to serve people on the move with their expertise in catering and hospitality, provisioning and logistics, and onboard solutions. We serve over 250 carriers in more than 30 countries and provide our customers with expertise and solutions tailored to their guests, service offerings, and geographic regions.
Grupo Aeromexico, S.A.B. de C.V. is a holding company whose subsidiaries are engaged in commercial aviation and the promotion of passenger loyalty programs in Mexico. Aeromexico, Mexico’s global airline, operates more than 600 daily flights and has its main hub in Terminal 2 of the Mexico City International Airport. Its destinations network features 89 cities on three continents; including 43 destinations in Mexico, 18 in the United States, 17 in Latin America, 4 in Europe, 3 in Canada, and 3 in Asia. The Group's operating fleet of 133 aircraft is comprised of Boeing 787 and 737 jet airliners and next generation Embraer 170 and 190 models. In 2012, the airline announced its most significant investment strategy in Mexican aviation history, purchasing 100 Boeing aircraft including 90 MAX B737 jet airliners and 10 B787-9 Dreamliners. As a founding member of the SkyTeam airline alliance, Aeromexico offers customers more than 1,000 destinations in 177 countries served by the 20 SkyTeam airline partners rewarding passengers with benefits. Our vision Be the #1 choice for delivering the best personalized flying experience with a spirit of warmth and service. Our Values Deliver sustained growth by providing consistent service from the heart and creating unique experiences with safety and discipline. Our Behaviors Put safety first- Fully comply with norms, policies and procedures guaranteeing the safety and well-being of our customers and employees. Serve with excellence- Provide best- in-class quality service, taking care of the details that are important for your customers, and offer a personalized experience every step of the way. Collaborate as one- Work as a team, creating synergies and integrating different perspectives to be more efficient and unleash Aeromexico’s potential. Live with unshakable integrity- Be an ambassador for Aeromexico, acting with discipline and responsibility at all moments according to our values and Code of Conduct.
Delta Air Lines (NYSE: DAL) is the U.S. global airline leader in safety, innovation, reliability and customer experience. Powered by our employees around the world, Delta has for a decade led the airline industry in operational excellence while maintaining our reputation for award-winning customer service. With our mission of connecting the people and cultures of the globe, Delta strives to foster understanding across a diverse world and serve as a force for social good.
Ryanair Holdings plc, Europe’s largest airline group, is the parent company of Ryanair DAC, Lauda, Buzz and Ryanair UK. Carrying 160m+ guests p.a. on over 3,000 daily flights to/from 225 airports. Plan to carry 225m+ guests p.a. by 2026. Unfortunately, we are unable to answer customer service queries through LinkedIn. Please contact our customer service department through our website: http://www.ryanair.com/ie/questions/contacting-customer-service/ alternatively you can contact us through Twitter @askRyanair or on facebook.com/Ryanair
At Saudia Group, we're on a mission to inspire people to go beyond borders. Our purpose is rooted in unlocking human potential and connecting the world in ways never thought possible. We are committed to reshaping the aviation ecosystem in our region and beyond, by embracing innovation and a customer-centric approach. Our Vision: To be the preferred choice of a customer-centric aviation ecosystem from the region. Our Mission: By driving synergies, unlocking opportunities, and embracing a tech-first mindset, we will maximize sustainable value creation, and earn the loyalty of our people, customers, and communities. Our Core Values: - Customer Centricity - People - Heritage & Innovation - Collaboration - Collective Accountability - Excellence These values are the guiding principles that define our culture and drive our decisions. We are dedicated to nurturing a workplace where everyone feels valued and empowered to contribute to our shared vision. Join us on this exhilarating journey of redefining aviation, breaking boundaries, and fostering connections across the globe.
Turkish Airlines has soared to new heights since its first flight in 1933, becoming the airline that connects more countries than any other. Our commitment to excellence is reflected in the world-class service, comfort, and innovative travel experience we offer, designed to elevate every journey. With a diverse team of professionals from around the world, we are proud to be a truly global company, bringing together different perspectives and expertise to deliver an unparalleled travel experience. Powered by an expansive and unrivaled network, we bridge continents and cultures, providing a seamless and premium journey that reflects our passion for aviation. Each flight carries the promise of comfort and the prestige of flying under the Turkish flag, with a dedication to delivering the best to our passengers. Our story is one of continuous growth, driven by a commitment to inspire new discoveries, and set the standard for global air travel.
JetBlue — New York's Hometown Airline — was born at JFK in 1999 with the mission of bringing humanity back to air travel, and is now a leading carrier in NYC, Boston, Fort Lauderdale, Orlando, and San Juan. JetBlue serves 40M+ customers annually, with low fares and award-winning service to 100+ destinations on both sides of the Atlantic. Questions? We’ve got you. Visit jetblue.com
The Lufthansa Group is an aviation company with operations worldwide. It plays a leading role in its European home market. With 109,509 employees, the Lufthansa Group generated revenue of EUR 32.770m in the financial year 2022. The Passenger Airlines segment includes, on the one hand, the network airlines Lufthansa German Airlines, SWISS, Austrian Airlines and Brussels Airlines. As part of the multihub strategy, they offer their passengers a broad range of flights from their global hubs in Frankfurt, Munich and Zurich as well as their national hubs in Vienna and Brussels. Lufthansa German Airlines also includes the regional airlines Lufthansa CityLine, Air Dolomiti and Eurowings Discover, the Lufthansa Group’s holiday airline. Besides the network airlines, Eurowings also belongs to the Passenger Airlines segment. This airline provides a comprehensive range of point-to-point connections for European short-haul destinations, in particular from German-speaking countries. Besides its Passenger Airlines business segment, the Lufthansa Group also comprises aviation services. This includes the Logistics, MRO and Catering segments in particular. The Lufthansa Group also includes the Additional Businesses and Group Functions. These comprise Lufthansa Aviation Training and Lufthansa Systems especially.
Latest updates, reports, and threat intel affecting the global network.
Continuing its attacks on Lithuania, the NoName hacker group has now targeted the country's aviation sector, claiming the KlasJet Airlines, DAT LT,...
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.