this post was submitted on 24 Sep 2023
811 points (98.7% liked)
Technology
59454 readers
3892 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
So what happened to the whole "every part is tracked from production to installation and through maintenance checks?"
It sounds like it is and that’s how they were able to catch on to this fake parts company.
I think he means, why didn't they catch the first one?
You've tracked them, but that doesn't mean you've followed up at every second of every day to see if the company still exists.
This is the right answer. When we perform maintenance on our aircraft there's a logbook entry that contains very specific details about the part that went in, such as its serial number, but really that's so the insurance company can track down the culprit after the crash. Not many individuals are doing the tracing themselves.
I think there is trust in the system because the part came with all the necessary paperwork and everything checks out. In this case the shady parts company was forging certification documents from other manufacturers. That’s going to be hard to catch no matter how effective the system is.
Everything checking out:
"Several of the filings are riddled with typos, including misspelled executive titles and oddly capitalized words that appear to have happened when someone hit caps lock instead of the “A” key."
Yeah, it'll be easy to catch if you actually dig into it, but if you're not given a reason to, it might take a while to catch; which is exactly what happened
Nor did they ensure the credentials were legitimate, which is super hard if you're not specifically looking for it and aware it's occurring. Someone had insider knowledge and exploited a vulnerability.