Japan Airlines (JAL), the country’s flag carrier, has restored its systems following a cyberattack on Thursday that caused delays to domestic and international flights. The airline announced that same-day ticket sales and online services have resumed, with operations returning to normal.
Nature of the Cyberattack
The attack, which began at 7:24 a.m., was identified as a Distributed Denial-of-Service (DDoS) attack. This type of cyberattack floods a system with massive amounts of data, overwhelming its capacity and causing disruptions. JAL’s internal and external systems were affected, forcing the temporary shutdown of a malfunctioning router and suspension of ticket sales for same-day departures.
Despite the disruption, JAL confirmed that no customer information was compromised and there was no damage from computer viruses. Flight safety remained unaffected throughout the incident.
Impact on Flights
The cyberattack delayed 24 domestic flights for over 30 minutes and affected baggage management systems and the company’s mobile app. According to Japan’s public broadcaster NHK, more than 40 flights were delayed at various airports across Japan, though some delays were due to unrelated factors such as weather.
Passengers faced disruptions during the busy year-end holiday travel season, with crowded terminals reported at Tokyo’s Haneda airport. Flights for the following day were scheduled to operate normally, and affected passengers were advised to contact the airline for assistance.
Broader Cybersecurity Concerns in Aviation
This incident highlights the growing threat of cyberattacks targeting the aviation sector. Airlines worldwide have increasingly become targets due to their reliance on digital systems for operations:
- In September, Germany’s air traffic control operator, Deutsche Flugsicherung, experienced a cyberattack affecting its administrative IT systems.
- In October, a ransomware gang targeted the operator of 13 airports in Mexico, forcing reliance on backup systems.
- In January, Iran-backed attackers disrupted airport operations by replacing flight data with politically motivated messages.
Response and Resilience
JAL acted swiftly to address the issue, restoring systems within hours and minimizing disruption. Chief Cabinet Secretary Yoshimasa Hayashi stated that the transport ministry had instructed JAL to expedite recovery efforts and accommodate affected passengers. ANA Holdings, Japan’s other major airline, confirmed that it was not impacted by the attack.
Meanwhile, similar challenges have been faced globally. For instance, on Christmas Eve, American Airlines grounded all flights for an hour due to a technical issue involving network hardware, leading to widespread disruptions.
Conclusion
The cyberattack on Japan Airlines underscores the need for enhanced cybersecurity measures across the aviation industry. While JAL’s quick response ensured minimal impact, the incident serves as a reminder of the vulnerabilities inherent in digital systems. Airlines must invest in secure infrastructure and proactive defenses to protect operations and maintain passenger trust.