On Monday, media reported that a ransomware attack was behind the airport disruptions that crippled automated check-in systems at some of Europe’s busiest hubs over the weekend. The EU’s cybersecurity agency ENISA confirmed the attack, though it did not provide details on the origin of the breach. The incident affected dozens of flights and disrupted travel for thousands of passengers at Heathrow, Berlin, and Brussels airports. The ransomware attack targeted systems provided by US software maker Collins Aerospace, a subsidiary of RTX, previously known as Raytheon Technologies.
ENISA stated that the type of ransomware has been identified, and law enforcement is involved in the investigation. However, no groups have yet claimed responsibility or made any demands. Collins Aerospace emphasized that it is working with the affected airports to restore full functionality, with updates in the final stages of implementation. The company was previously hit by ransom-seeking hackers in 2023, highlighting a pattern of cyber threats against its systems. Ransomware, a type of malicious software, encrypts data or blocks access to systems until a ransom is paid. The incident has raised concerns about cybersecurity vulnerabilities in critical infrastructure, prompting calls for enhanced digital defenses in Europe.
While the disruption has caused operational challenges, Collins Aerospace has assured that measures are being taken to mitigate the impact. The situation underscores the growing threat of cyberattacks on essential services, emphasizing the need for robust security protocols to prevent further incidents. As investigations continue, authorities are urging vigilance and collaboration among organizations to safeguard against such threats in the future.