Brussels: Europe’s aviation sector faced unprecedented disruption this week as several major airports experienced widespread operational delays and cancellations due to a third-party ransomware attack, the European Union Agency for Cybersecurity (ENISA) confirmed on Monday. The incident has highlighted the growing vulnerability of interconnected digital systems in critical infrastructure and underscored the urgent need for enhanced cybersecurity measures in the aviation industry.
According to ENISA, the cyberattack specifically targeted the MUSE check-in and boarding software developed by Collins Aerospace, a subsidiary of RTX. This software is integral to airport operations, handling electronic check-ins, baggage drops, and boarding processes. The breach compromised automated systems across airports in London Heathrow, Berlin Brandenburg, Brussels, and Dublin, causing long queues, flight delays, and widespread passenger inconvenience. Manual check-in procedures were implemented to mitigate the disruption, but the scale of the impact remained significant.
Brussels Airport suffered the most severe consequences, with 50 out of 257 scheduled departures canceled on Sunday, forcing authorities to request that airlines cancel approximately half of Monday’s departures to manage the backlog. Airport officials confirmed that Collins Aerospace had not yet released a secure update to restore full functionality, leaving critical systems vulnerable to ongoing operational challenges.
While ENISA emphasized that there is currently no evidence of a widespread or severe cyberattack affecting additional sectors, the event has raised alarms regarding the security of digital infrastructure that underpins modern aviation. Experts point out that the aviation sector’s growing reliance on interconnected software systems makes it particularly susceptible to cyber threats, especially from third-party vendors whose systems may not be fully protected against sophisticated ransomware.
The European Commission and aviation authorities are actively investigating the origins of the attack and are urging airports and airlines to enhance cybersecurity protocols, implement contingency measures, and conduct rigorous risk assessments. This incident forms part of a broader pattern of cyberattacks in recent months, affecting sectors from automotive to retail, signaling an urgent need for coordinated defense strategies.
Passengers are advised to check with airlines for real-time updates on flight schedules, and authorities have reiterated that safeguarding critical infrastructure against digital threats must remain a top priority. As Europe grapples with this latest cyber disruption, the aviation industry is confronting a stark reminder of the fragility of its digital backbone.