[3rd Party Risk Management](https://www.govinfosecurity.com/3rd-party-risk-management-c-434) , [Critical Infrastructure Security](https://www.govinfosecurity.com/critical-infrastructure-security-c-525) , [Governance -& Risk Management](https://www.govinfosecurity.com/governance-risk-management-c-93)Cyberattack Disrupts Services at Major European Airports========================================================Airports in Brussels, Berlin, and the UK and Ireland Impacted [Akshaya Asokan](https://www.govinfosecurity.com/authors/akshaya-asokan-i-2924) ([asokan_akshaya](https://www.twitter.com/asokan_akshaya)) • September 20, 2025 [](https://www.bankinfosecurity.com/cyberattack-disrupts-services-at-major-european-airports-a-29490#disqus_thread) * * * * * [Credit Eligible](/premium/pricing ‘As a BankInfoSecurity.com annual member, this content can be used toward your membership credits and transcript tracking.’)* [](/premium/pricing ‘As a BankInfoSecurity.com annual member, this content can be used toward your membership credits and transcript tracking.’)* Get Permission*  Image: ShutterstockFlight cancellations and delays lasting hours at several major European airports including London’s Heathrow on Saturday occurred after a cyberattack against a provider of check-in and boarding systems.**See Also:** [9 Tips to Block Third-party Cyber Attacks](https://www.govinfosecurity.com/whitepapers/9-tips-to-block-third-party-cyber-attacks-w-14428?rf=RAM_SeeAlso)Hackers late Friday targeted Muse software developed by Collins Aerospace, an American aviation and defense technology company owned by publically-traded RTX. The software allows multiple airlines to share check-in desks and boarding gate positions. The company has in recent years [touted](https://prd-sc102-cdn.rtx.com/-/media/ca/product-assets/files/public/services-and-support/information-management/arinc-airports/passenger-processing-systems/cmuse/airports_arinc-cmuse_bro_a4_emea.pdf) an optional integration with Amazon Web Services cloud infrastructure.The incident led to at least 29 flight cancellations at Heathrow – Europe’s busiest and the fourth [most transited](https://www.oag.com/busiest-airports-world-2024) in the world – as well as Berlin Brandenburg and Brussels Airport, [reported](https://www.reuters.com/en/cyberattack-causes-flight-delays-cancellations-brussels-airport-2025-09-20/) Reuters. By late Saturday, Dublin Airport also [reported](https://x.com/DublinAirport/status/1969477571029921851) service disrupted tied to the hack.’I’m aware of an incident affecting airline check-in and boarding, impacting flights at Heathrow and other European airports,’ British Transport Secretary Heidi Alexander [said](https://x.com/heidi_labour/status/1969339790181928969). ‘I’m getting regular updates and monitoring the situation. If you’re flying at Heathrow today, check with your airline before traveling.’ Heathrow in April [inked]( https://www.rtx.com/news/news-center/2025/04/09/heathrow-aoc-and-rtxs-collins-aerospace-ink-contract-extension-to-provide-stream) a six-year renewal agreement with RTX to continue deploying Muse software in all four passenger terminals.Heathrow Airport on Saturday [advised](https://x.com/HeathrowAirport/status/1969303324995334328) passengers to check flight status before leaving home and to arrive at least three hours before international departures and two hours before domestic flights. Similar alert was [made](https://www.brusselsairport.be/en/passengers/infopage/difficult-airport-operations) by Brussels Airport, which first disclosed the hack, initially characterizing it as a ‘technical issue.”The service provider is actively working on the problem and to solve it as soon as possible,’ Brussels Airport officials [said](https://www.7sur7.be/belgique/plusieurs-aeroports-europeens-touches-par-une-cyberattaque-files-retards-et-annulations-a-brussels-airport~ac1e4b6d).The disruptions forced both Brussels Airport and Berlin Brandenburg to revert to manual check-in using pen and paper, resulting in long wait times. Brussels Airport [said](https://x.com/BrusselsAirport/status/1969441590277009473) delays and cancellations would likely continue into Sunday.RTX did not immediately respond to request for comment. In a statement to The Guardian, the company [acknowledged](https://www.theguardian.com/uk-news/2025/sep/20/heathrow-airport-delays-cyber-attack-berlin-brussels-cancelled-delays) a ‘cyber-related disruption to Muse software in select airports.”We are actively working to resolve the issue and restore full functionality to our customers as quickly as possible,’ a company spokesperson said. The impact is limited to ‘electronic customer check-in and baggage drop.’A spokesperson for the U.K. National Cyber Security Centre [told](https://www.bbc.co.uk/news/articles/c3drpgv33pxo) the BBC it is working with Collins Aerospace and affected airports.The hack highlights the interdependency of global transportation IT systems and their weaknesses, said Darren Guccione, CEO and co-founder of Keeper Security. ‘Organizations relying on third-party systems need to ensure every access point is secured, every connection monitored, and no system is automatically trusted.’  #### [Akshaya Asokan](https://www.govinfosecurity.com/authors/akshaya-asokan-i-2924)*Senior Correspondent, ISMG* Asokan is a U.K.-based senior correspondent for Information Security Media Group’s global news desk. She previously worked with IDG and other publications, reporting on developments in technology, minority rights and education.[](https://twitter.com/asokan_akshaya) [](mailto:aasokan@ismg.io)  ##### [OnDemand -| Cyber Resiliency: The Building Blocks for transforming Australia’s Enterprise Security and Risk Management](https://www.govinfosecurity.com/webinars/ondemand-cyber-resiliency-building-blocks-for-transforming-australias-w-5461?rf=RAM_Resources) ##### [OnDemand -| Log4j’s Impact on Software Supply Chain Management](https://www.govinfosecurity.com/webinars/ondemand-log4js-impact-on-software-supply-chain-management-w-3842?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/how-overconfidence-complacency-leave-companies-vulnerable-to-attack-w-8287?rf=RAM_Resources)##### [How Overconfidence And Complacency Leave Companies Vulnerable To Attack](https://www.govinfosecurity.com/whitepapers/how-overconfidence-complacency-leave-companies-vulnerable-to-attack-w-8287?rf=RAM_Resources) [whitepaper](https://www.govinfosecurity.com/whitepapers/inside-view-into-supply-chain-attack-w-6133?rf=RAM_Resources)##### [An Inside View into a Supply Chain Attack](https://www.govinfosecurity.com/whitepapers/inside-view-into-supply-chain-attack-w-6133?rf=RAM_Resources) ##### [Security Leaders Share Secret Sauce for Success with Digital Transformation](https://www.govinfosecurity.com/security-leaders-share-secret-sauce-for-success-digital-transformation-a-13214?rf=RAM_Resources) [3rd Party Risk Management](https://www.govinfosecurity.com/3rd-party-risk-management-c-434)##### [Cyberattack Disrupts Services at Major European Airports](https://www.govinfosecurity.com/cyberattack-disrupts-services-at-major-european-airports-a-29490) [Artificial Intelligence -& Machine Learning](https://www.govinfosecurity.com/artificial-intelligence-machine-learning-c-469)##### [Irregular Secures $80M Series A to Combat AI Model Exploits](https://www.govinfosecurity.com/irregular-secures-80m-series-to-combat-ai-model-exploits-a-29489) ##### [FBI Pushes Back Against Scrutiny Over Cyber Cuts, Vacancies](https://www.govinfosecurity.com/fbi-pushes-back-against-scrutiny-over-cyber-cuts-vacancies-a-29488) [Security Information -& Event Management (SIEM)](https://www.govinfosecurity.com/security-information-event-management-siem-c-455)##### [Vega Secures $65M to Scale SecOps, Take On Traditional SIEMs](https://www.govinfosecurity.com/vega-secures-65m-to-scale-secops-take-on-traditional-siems-a-29487) [Network Firewalls, Network Access Control](https://www.govinfosecurity.com/network-firewalls-network-access-control-c-452)##### [Hackers Steal SonicWall Firewall Configurations](https://www.govinfosecurity.com/hackers-steal-sonicwall-firewall-configurations-a-29486)[Overview](https://www.govinfosecurity.com/webinars/risk-management-framework-learn-from-nist-w-255) * Twitter* Facebook* LinkedIn* * * From heightened risks to increased regulations, senior leaders at all levels are pressured to improve their organizations’ risk management capabilities. But no one is showing them how – until now.Learn the fundamentals of developing a risk management program from the man who wrote the book on the topic: Ron Ross, computer scientist for the National Institute of Standards and Technology. In an exclusive presentation, Ross, lead author of NIST Special Publication 800-37 – the bible of risk assessment and management – will share his unique insights on how to:* Understand the current cyber threats to all public and private sector organizations;* Develop a multi-tiered risk management approach built upon governance, processes and information systems;* Implement NIST’s risk management framework, from defining risks to selecting, implementing and monitoring information security controls.Presented By———— [Presented By](/authors/ron-ross-i-558)—————————————#### [Ron Ross](/authors/ron-ross-i-558)*Sr. Computer Scientist -& Information Security Researcher, National Institute of Standards and Technology (NIST)*
Related Tags:
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 481 – Air Transportation
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 92 – Public Administration
NAICS: 51 – Information
NAICS: 928 – National Security And International Affairs
Blog: GovInfoSecurity
Associated Indicators:
www.rtx.com
https://www.rtx.com/news/news-center/2025/04/09/heathrow-aoc-and-rtxs-collins-aerospace-ink-contract-extension-to-provide-stream