Hacker claims attack on U.S. airline, stolen no-fly list was out of boredom

The Transportation Security Administration is investigating cybersecurity chaos at CommuteAir after a hacker claimed to have accessed the regional airline’s systems and grabbed a no-fly list.

The hacker told The Washington Times they likely could have canceled and delayed flights and developed physical credentials for airline employees.

CommuteAir said it was not able to validate all of the hacker’s claims.

The hacker, who identifies as “maia arson crimew,” communicated with The Times via email. The hacker also explained the hack in a blog post titled “How to Completely Own an Airline in 3 Easy Steps.”

The hacker cited boredom as motivation and wrote that they were not responsible for the computer system failure that grounded all airlines in the U.S. on Jan. 10.