Cyberattack Disrupts European Airports’ Check-in Systems
A cyberattack targeting check-in and boarding systems led to notable disruptions at major European airports on Saturday, causing delays but revealing significant vulnerabilities in security systems, according to experts.
Initially reported at Brussels, Berlin’s Brandenburg, and London’s Heathrow airports, the disruptions forced manual check-in and boarding operations. The incident affected the service provider for these systems, not the airlines or airports directly, leaving other European airports largely unaffected.
Brussels Airport stated, “There was a cyberattack on Friday night 19 September against the service provider for the check-in and boarding systems affecting several European airports including Brussels Airport.” Initially, a “large impact” on flight schedules was reported.
Collins Aerospace, the company providing the affected systems, acknowledged a “cyber-related disruption” impacting its MUSE software at several airports. This software plays a crucial role in passenger self-check-in processes and luggage dispatch.
Expert Insights on the Attack
The identity of the attackers remains unknown, with speculation ranging from hackers to state actors. Travel analyst Paul Charles expressed surprise, noting the attack’s impact on a major aviation and defense company. He told Sky News, “This is a very clever cyberattack indeed because it’s affected a number of airlines and airports at the same time.”
As the day progressed, the situation began stabilizing. Brussels Airport reported nine canceled flights, four rerouted, and 15 delayed by an hour or more by mid-morning. Berlin’s Brandenburg Airport indicated no cancellations but noted the situation could change. Heathrow experienced minimal disruption, with no direct flight cancellations linked to the attack.
Passenger Frustrations and Operational Challenges
Passengers expressed frustration over the slow check-in process due to reduced staffing at counters. At Heathrow, Maria Casey, traveling to Thailand, highlighted the inconvenience, stating, “They had to write our baggage tabs by hand.”
Collins Aerospace, a subsidiary of RTX Corp., formerly Raytheon Technologies, is actively working to resolve the issue, emphasizing that manual check-in operations can mitigate the impact.
Industry Vulnerabilities Highlighted
The attack underscores the airline industry’s vulnerability due to its reliance on third-party digital systems. Charlotte Wilson from Check Point noted that aviation is an “increasingly attractive target” due to shared systems. “When one vendor is compromised, the ripple effect can be immediate and far-reaching,” she added.
Experts are still analyzing the attack to determine the responsible parties, with some suggesting it resembles vandalism more than extortion. James Davenport from the University of Bath stated that more details are needed to confirm the nature of the attack.
