Arrest Made in Ransomware Attack Disrupting Major European Airports
The UK’s National Crime Agency has arrested a man in West Sussex in connection with a ransomware attack that significantly disrupted air travel across Europe last week, causing extensive flight delays and forcing airlines to manually check passengers and luggage, reports 24brussels.
The arrested individual, described as being in his forties, has been released on conditional bail as the investigation continues. This cyberattack had a broad impact, affecting key airports such as London’s Heathrow and Berlin’s Brandenburg.
The attack specifically targeted the Multi-User System Environment (MUSE) software, which facilitates shared check-in processes among multiple airlines. While major airlines like British Airways managed to activate back-up systems, many smaller airlines resorted to manual check-ins — a method that has largely been replaced by automated systems.
Details around the cyberattack remain sparse, though early assessments suggest it was not conducted by a highly sophisticated group. Cybersecurity expert Kevin Beaumont noted that a basic ransomware tool known as Hardbit may have been used, while other reports mention a variant called Loki. Both tools fall under the Ransomware-as-a-Service umbrella and are typically employed in smaller-scale operations, raising questions about the overall intention and capability behind the attack.
This incident underscores ongoing vulnerabilities within critical aviation infrastructure, a matter of increasing concern for cybersecurity professionals. The full impact of this attack and its implications for future security measures in air travel remain to be seen.