Skip to content

Libyan Civil Aviation Authority Allegedly Breached, 300GB of Aviation Data Advertised

Breach Report Libya flagLibya Aviation

Libyan Civil Aviation Authority Allegedly Breached, 300GB of Aviation Data Advertised

A threat actor using the alias EvaN47 has posted what they describe as a breach of the Libyan Civil Aviation Authority (caa.gov.ly), advertising a roughly 300GB dataset spanning 2015 to 2026 with a contact for acquisition. Per the post, it covers the authority's core sectors: pilot, engineer, and air-traffic-controller licensing; aircraft registration, airworthiness, and maintenance logs; air traffic and airspace management with flight data and NOTAMs; safety incident reports and investigation files; administration and finance including HR and payroll; and the electronic services portal. The actor claims the ability to retrieve and modify records, and included sample pilot and engineer licences and a medical certificate. The claim is unverified.

Data~300 GB
Span2015 to 2026
CountryLibya flagLibya
ActorEvaN47

Post details

TargetLibyan Civil Aviation Authority (caa.gov.ly)
CountryLibya flagLibya
SectorGovernment / Aviation
Dataset~300 GB, 2015 to 2026
Access claimRetrieve and modify records
SamplesPilot / engineer licences, medical cert
Observed
ActorEvaN47

!Allegedly included

  • ~300 GB dataset
  • Pilot / engineer / ATC licensing
  • Aircraft registration & airworthiness
  • Maintenance & failure logs
  • Air traffic & airspace data (NOTAMs)
  • Safety & investigation files
  • HR & payroll records
  • Personal licence documents & photos

Screenshot(s)

Potential impact

The dataset reportedly combines personal data on aviation professionals (names, photos, dates of birth, addresses, licence numbers, and medical certificates) with the authority's operational and administrative systems. Beyond identity-theft and fraud risk for the individuals, the post claims access to air traffic and airspace management data, safety investigation files, and the ability to modify records, which if accurate would carry aviation-safety and national-security implications. The dataset is not verified, and no data or contact details are reproduced here.

iStatus

Unverified

The actor advertised the dataset with a contact channel and included sample documents; no sample records, personal details, or the contact channel are reproduced here. The claim is unverified and the Libyan Civil Aviation Authority has not publicly addressed it.

Want the non-redacted screenshots? Paid subscribers get all of the claim details and unredacted screenshots. Check out the threat feed or ransomware feed (whichever applies to this post), then after subscribing, search there for this alert to view the unredacted version. View pricing →

DARK WEB INFORMER - THREAT INTELLIGENCE

Latest