Hawaiian Airlines confirmed a cybersecurity incident on Thursday that disrupted parts of its IT infrastructure. While the airline did not disclose the nature of the attack, its use of the term “cybersecurity event” has raised concerns, as the phrase is often associated with ransomware breaches. Despite the disruption, the airline reported no flight delays or cancellations and assured the public that all operations remain safe and on schedule.
The Federal Aviation Administration (FAA) stated that it is in contact with the airline’s safety office and confirmed there is currently no impact on aviation safety. “The airline continues to operate safely. We are monitoring the situation,” an FAA spokesperson said.
Incident response underway as airline stays tight-lipped
In its official statement, Hawaiian Airlines said it had taken “steps to safeguard operations.” No further technical details were made available at the time of writing. However, the fact that a representative responded to media queries via a Gmail account raises questions about potential disruption to the airline’s corporate communication systems.
Also read: Kaspersky Flags Gaps in Industrial Cybersecurity
Although the scope of the breach remains unclear, cybersecurity experts suggest that critical IT systems might have been targeted. The absence of an official confirmation on whether customer data, internal records, or operational technologies were compromised leaves room for speculation.
A growing threat for aviation sector
This incident comes amid growing cybersecurity challenges for global airlines, which are increasingly reliant on cloud-based platforms, connected aircraft systems, and digital payment infrastructure. The aviation sector has become a frequent target for ransomware operators and cybercriminals due to its operational complexity and high stakes.
While Hawaiian Airlines has not yet confirmed the involvement of ransomware, previous attacks in the industry—such as those on British Airways and Air India—have resulted in massive customer data leaks, regulatory fines, and lasting brand damage.
The event highlights a broader need for aviation companies to adopt a proactive cybersecurity posture. Real-time threat detection, secure system architecture, employee training, and incident response planning are now mission-critical for maintaining operational continuity and public trust.
