← View All Articles

  • September 24, 2025

Cyberattack on European Airports

Ransomware Attack on Third-Party Provider Causes Widespread European Flight Chaos

A ransomware attack on a key IT service provider has caused widespread flight delays and cancellations across Europe, bringing automated airport systems to a standstill. The European Union Agency for Cybersecurity (ENISA) confirmed the incident, revealing that the malicious software targeted a third-party provider, forcing major airports to revert to manual operations.

The disruption began over the weekend, affecting automated check-in and boarding systems at several of Europe’s busiest airports, including London’s Heathrow, Brussels, and Berlin. The attack targeted the MUSE software provided by Collins Aerospace, a US-based company. As a result, staff at the affected airports have had to process passengers manually, leading to long queues and significant delays that have continued into the week.

The incident has highlighted the vulnerability of critical infrastructure to such cyber threats. Airports and airlines have been working to mitigate the impact, with some airports asking airlines to cancel flights to manage the disruption. This event serves as a stark reminder of the interconnectedness of modern systems and the potential for a single point of failure to cause extensive disruption across an entire industry.

Ransomware attacks, like the one that hit the airports, are one of the most common forms of cyberattacks. In these attacks, criminals use malicious software to encrypt the victim’s data, making it inaccessible. A ransom payment, usually in cryptocurrency to make it harder to trace, is then demanded in exchange for the decryption key. The technique has evolved in recent years, with many criminals now using “double extortion.” This involves stealing the data before encrypting it and threatening to release it if the ransom is not paid.

In recent months, governments and large corporations have been the primary victims of these attacks. Sectors like healthcare, education, and critical infrastructure, including transportation, have become frequent targets. The sensitive nature of their data and the urgency of their services increase the likelihood that victims will pay the ransom. While attacks on high-profile targets have received more attention, they have not necessarily become more frequent. However, a recent survey by the German industry group Bitkom revealed that ransomware is the most common form of cyberattack, with one in seven companies having paid a ransom.

  • We can help you become FADP compliant!

Expert Guidance, Affordable Solutions, and a Seamless Path to Compliance

Get in contact

What do you think?

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Insights

  • Related Articles
Cybersecurity Compliance: Unlocking Business Growth with NIST, ISO 27001 & SOC 2 – Free Online Event
Turn cybersecurity from a regulatory burden into a powerful driver of trust, opportunity, and competitive
Navigating Data Privacy: GDPR, FADP & HIPAA for Swiss Startups – Free Online Event
A 30-minute practical session to help founders and tech leaders master key data privacy frameworks
EU AI Act: From Complexity to Opportunity – Live at Unlimitrust, Lausanne
A practical, expert-led workshop to help Swiss innovators understand their obligations, assess risk, and turn