Brussels – On Monday, the European Union’s cybersecurity agency confirmed that the disruptions at major airports stemmed from a ransomware attack perpetrated by a third party., reports 24brussels.
The attack affected airports including Heathrow in London, Brussels Airport, and Berlin, leading to significant delays and cancellations as automated check-in and boarding systems were compromised. Passengers across Europe encountered longer waiting times and were advised to consult their airlines for updated travel information.
“The type of ransomware has been identified. Law enforcement is involved to investigate,”
stated the European Union Agency for Cybersecurity (ENISA) in a public statement. The agency did not specify details about how the attack was executed or the extent of the damages.
Brussels Airport reported that the cyber incident forced a return to manual check-in and boarding processes, disrupting their flight schedules. “This has a large impact on the flight schedule and will, unfortunately, cause delays and cancellations of flights,” the airport stated. “The service provider is actively working on the issue and trying to resolve the problem as quickly as possible.”
Similarly, both London Heathrow and Berlin airports indicated that they were coping with the repercussions of the cyberattack. Passengers were urged to check in with their airlines due to the ongoing technical issues affecting system providers operating across Europe. Berlin Airport specifically addressed the situation, stating, “Due to a technical issue at a system provider operating across Europe, there are longer waiting times at check-in. We are working on a quick solution.”
How did the disruption affect airports across Europe?
In the aftermath of the attack, numerous airports experienced operational challenges. Automated systems, which handle a significant volume of passenger processing, were disabled, leading to an increased burden on staff and longer queues for travelers.
What are the previous instances where ransomware has affected airport operations?
This incident is not isolated; in 2022, Swissport, a major provider of airport ground and cargo-handling services, was targeted by the BlackCat ransomware group, resulting in extensive disruptions and the theft of approximately 1.6 terabytes of sensitive data. In previous ransomware incidents, systems have been compromised, affecting airport networks, although those occurrences did not lead to immediate flight disruptions.
The repeated instances of ransomware attacks on aviation infrastructure underscore vulnerabilities in the sector and highlight the need for enhanced security measures to safeguard against future incidents.
