How prepared is the UK against airport cyber hacks?

The spate of cyber and hybrid attacks targeting aviation has put the industry – and passengers – on high alert.

Thousands of travellers had their weekend plans upended after a suspected cyberattack hampered ground operations across major European airports like Heathrow, Brussels and Berlin.

Airline staff were forced to process check-in details manually after a ‘technical issue’ affected US firm Collins Aerospace, causing significant delays and disruption over the weekend.

Now all eyes have turned to Denmark after mysterious drones were spotted flying over four of its airports –

This came after drones were spotted hovering above Copenhagen and Oslo’s airports earlier this week.

The incidents have reminded us that aviation is exposed to the whims of malign actors – despite a constant race to plug any vulnerabilities.

So, how prepared is the UK for the likelihood of more cyber attacks targeting aviation – and how worried should you be?

Mantas Sabeckis, an ethical hacker and infosecurity researcher, told Metro: ‘It seems that the UK aviation world is taking cyber threats seriously and working hard to stay ahead. Groups like the Civil Aviation Authority and the National Cyber Security center have laid out clear plans and guidance to help airports, airlines, and everyone involved keep their digital systems safe.

‘They push for basics like keeping systems updated, training staff on cyber risks, and having a solid plan to bounce back quickly if something goes wrong.’

He pointed to the UK Cyber Security Breaches Survey, which shows that around 76% of large UK businesses have plans in place for cyber incidents.

‘That said, aviation is very complex, with lots of different companies and suppliers working together,’ Mr Sabeckis continued.

‘This means there are still weak spots – like the recent cyberattack linked to Collins Aerospace that caused big headaches at airports.

‘So, even though the UK is doing well compared to many places, the job of protecting aviation cyber systems is never done. You have to keep learning, improving, and staying alert as hackers get smarter.’

But despite the precautions and requirements, malign actors can still find and exploit cracks in the system – and airports are seen as a high-value target.

Dr Daniel Gardham, from the University of Surrey center for Cyber Security, said it is ‘unsurprising’ that attackers are going after aviation.

‘There’s a reason the attackers are going after these very visible targets, he told Metro.

‘One is that it affects the everyday person – it brings your attention to these matters, whether you care about it or not.  

‘And secondly, with airports in particular, different systems have to work together.’

He said the systems – ranging from software managing the conveyor belt and baggage to the fuel pumps for aircraft – have to talk to each, creating a bigger ‘attack surface.’

‘It is unsurprising that they are able to find vulnerabilities at an airport, just because of the scale of the operation, and the fact that it comprises so many pieces that have to work together.  

These complexities are unlikely to disappear anytime soon, despite advancements in AI and technology – but an average traveller shouldn’t lose sleep over possible cyber-related flight disruption.

Dr Gardham said: ‘I’m sure the airports themselves are very worried, because they know the target they paint.’

While passengers should be mindful about cybersecurity, there’s not much passengers themselves can do, both experts agreed.

Dr Gardham recommended taking out travel insurance to make sure that ‘you are covered in case something happens.’

Mr Sabeckis said that most cyberattacks target airports and airline systems ‘rather than passengers directly.’

What about aviation in the US?

It is not just the UK and European travel hubs that have been targeted in recent years.

Airlines in the US fell victim to the Scattered Spider cybercrime network shortly after hackers paralyzed Marks and Spencer payment systems in the UK, leading the FBI to issue an alert about the group in June.

The FBI said it has seen the Scattered Spider cybercriminal group ‘expanding its targeting to include the airline sector.’

‘These actors rely on social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access,’ the FBI warned.

Concerns were raised earlier this year over the impact on US aviation safety after Donald Trump launched attacks against the Federal Aviation Authority and fired air traffic controllers in the aftermath of the American Airlines crash over the Potomac River.

Mr Sabeckis told Metro: ‘It doesn’t seem that policies under President Donald Trump have directly made US aviation more vulnerable to cyberattacks. However, cybersecurity readiness can be influenced by changes in government priorities and funding decisions.

‘During the Trump administration, some regulatory and security programs underwent shifts (for instance, the Cybersecurity and Infrastructure Security Agency faced proposed cuts) that may have affected long-term investments in cyber defense, but these impacts are generally indirect and part of broader, complex factors.

‘Currently, the US aviation sector faces similar cybersecurity challenges as the UK and other countries, including ransomware, supply chain risks, and phishing attacks. In 2024, Bridewell reported that 55% of US civil aviation organisations had experienced a ransomware attack over the previous 12 months. This shows the growing risk regardless of specific political influences.

‘Overall, maintaining and improving cyber defenses in US aviation depends on consistent funding, strong regulation, and collaboration across public and private sectors, which requires ongoing attention beyond any single administration.’

Get in touch with our news team by emailing us at webnews@usnewsrank.com.

For more stories like this, check our news page.