WestJet Probes Cyber-Attack Affecting Customer Data
▼ Summary
– WestJet Airlines is responding to a cybersecurity incident affecting its website and app, though flight operations remain unaffected.
– The airline is working with law enforcement and Transport Canada to investigate and mitigate the attack’s impact.
– Customers may experience intermittent issues accessing WestJet’s digital services while the company resolves the incident.
– Airlines are frequent targets for cyberattacks due to their sensitive customer data and operational vulnerabilities.
– Recent aviation cyber incidents include ransomware attacks on SpiceJet and Sunwing, plus attempts to interfere with aircraft systems.
WestJet Investigates Cybersecurity Breach Impacting Customer Systems
Canada’s second-largest airline, WestJet, is actively addressing a cybersecurity incident that disrupted some of its digital services over the weekend. While flight operations remain unaffected, customers have reported difficulties accessing the airline’s website and mobile app.
In an official statement released Friday, WestJet confirmed the breach involved internal systems and its app, prompting restricted access for certain users. The company has mobilized specialized teams alongside law enforcement and Transport Canada to investigate the incident and mitigate potential damage.
“At this stage, it’s premature to speculate on specifics, but we’re committed to transparency as details emerge,” the airline stated. “We urge guests and employees to remain vigilant, particularly when handling sensitive personal data.”
Over the weekend, WestJet provided periodic updates on its website, though no significant developments were disclosed as investigators followed established protocols. A Sunday afternoon notice acknowledged lingering technical issues, assuring customers that teams were working to resolve intermittent disruptions to the app and website.
Airlines remain prime targets for cybercriminals due to their vast repositories of customer data and the critical nature of their operations. The incident echoes similar attacks on carriers worldwide. In 2022, India’s SpiceJet faced flight delays following a ransomware attack, while Sunwing Airlines in Canada experienced check-in system failures after a third-party provider was compromised.
Beyond data theft, aviation cybersecurity risks extend to physical safety. Last year, reports surfaced of hackers attempting to interfere with El Al flights by targeting onboard communication systems to alter flight paths.
The European Union Aviation Safety Agency (EASA) recently updated its cybersecurity framework, introducing new Easy Access Rules for Information Security (Part IS) to bolster defenses across the industry. As threats evolve, airlines like WestJet are under increasing pressure to safeguard both passenger information and operational integrity.
WestJet continues to monitor the situation, prioritizing system restoration while urging customers to stay alert for potential phishing attempts or suspicious activity. Further updates are expected as the investigation progresses.
(Source: InfoSecurity)
