The Port of Seattle and Seattle-Tacoma International Airport (Sea-Tac) were hit by a cyberattack over the weekend.
Airport officials confirmed the attack, which shut down websites, email, and phone services, causing widespread inconvenience and delays for travelers.
The cyberattack was first reported on Aug 24 morning and continued into Aug 25 afternoon, leaving airport officials scrambling to restore normal operations.
Lance Lyttle, managing director of aviation for Sea-Tac Airport, confirmed the incident at a news conference, stating, “We believe this was a cyberattack.”
However, Lyttle could not provide details on the attackers’ intentions or whether personal data had been compromised.
The FBI’s Seattle field office is currently investigating the incident, working alongside federal partners to determine the cause and scope of the attack.
Despite the disruption, security operations at Sea-Tac have continued without interruption, as per a report by Seattletimes.
Greg Hawko, Washington state’s federal TSA security director, assured the public that security measures remained robust, with 72,000 people flying out of Sea-Tac on Aug 25.
Are You From SOC/DFIR Teams? - Try Advanced Malware and Phishing Analysis With ANY.RUN -14-day free trial
The cyberattack had a notable impact on baggage handling and other airport services. Alaska Airlines reported that staff had to manually sort over 7,000 bags because most of the checked luggage had missed flights over the weekend.
Airlines using the airport’s “common use gates,” such as Frontier, Spirit, and WestJet, faced additional challenges, including handwriting boarding passes and manually searching bags.
Despite these hurdles, major airlines like Delta Air Lines, Alaska Airlines, and American Airlines reported that their flight schedules remained largely unaffected.
However, Sun Country Airlines experienced over two-hour delays, with several flights impacted across the weekend.
Airport officials worked to mitigate the effects of the attack by advising travelers to arrive early, pack light, and keep essential belongings in carry-on luggage.
This incident highlights the growing vulnerability of critical infrastructure to cyberattacks. Nearly a decade ago, the Government Accountability Office warned of the increasing interconnectedness and dependency of airline operations on the Internet, pointing out significant security-control weaknesses.
Although advances have been made, Federal Aviation Administration Chief Counsel Marc Nichols noted in a May 2023 speech that the number and diversity of cyber threats are expected to rise.
Seattle has experienced other cyberattacks recently, including a malware attack on the Seattle Public Library in May and a hack at Change Healthcare in February that affected several Washington hospitals.
These incidents underscore the urgent need for enhanced cybersecurity measures across various sectors.
As the investigation into the Port of Seattle cyberattack continues, officials remain focused on restoring full functionality to affected systems.
The incident serves as a stark reminder of the critical importance of cybersecurity in maintaining the safety and efficiency of essential services.
Protect Your Business with Cynet Managed All-in-One Cybersecurity Platform – Try Free Trial
Researchers observed Lumma Stealer activity across multiple online samples, including PowerShell scripts and a disguised…
Palo Alto Networks reported the Contagious Interview campaign in November 2023, a financially motivated attack…
The recent discovery of the NjRat 2.3D Professional Edition on GitHub has raised alarms in…
A critical vulnerability, CVE-2024-3393, has been identified in the DNS Security feature of Palo Alto…
Threat Analysts have reported alarming findings about the "Araneida Scanner," a malicious tool allegedly based…
A major dark web operation dedicated to circumventing KYC (Know Your Customer) procedures, which involves…