In 2025, several prominent airlines, including WestJet, Cathay Pacific, Japan Airlines, and Air Europa, experienced significant cyber security incidents, encompassing data breaches and operational disruptions. These attacks have exposed millions of passenger records and targeted airline systems, revealing vulnerabilities in cybersecurity defenses, especially within third-party platforms. The breaches at airlines such as Qantas, Vietnam Airlines, and EasyJet highlight the increasing risks faced by the aviation industry, with the rapid digitalization of operations creating new attack surfaces.
The Qantas breach in July 2025 compromised personal data of approximately 5.7 million customers, resulting from vulnerabilities in a third-party contact center platform. Similarly, Vietnam Airlines disclosed a breach impacting 23 million records, traced back to an external service. Additionally, the attack on Cathay Pacific in 2018 led to the exposure of 9.4 million passengers' data, including sensitive personal information. These incidents underscore the persistent threat posed by cybercriminals targeting airline data systems.
Operational Disruptions and Growing Threats
Operational disruptions are also prominent, as exemplified by Japan Airlines' cyber attack in December 2024, which caused delays and cancellations of 24 flights, without data leakage. The overarching trend points to a heightened cyber risk landscape, driven by increased reliance on cloud services, IoT systems, and third-party vendors. The industry’s expanding attack surface emphasizes the need for advanced cybersecurity measures, robust vendor oversight, and passenger awareness. Overall, the airline sector faces an urgent imperative to bolster their defenses against escalating cyber threats and protect their operations and customer data.
