Article Details

Aloha, you might’ve been pwned: Hawaiian Airlines discloses ‘cybersecurity event’. 'No impact on safety,' FAA tells The Reg Hawaiian Airlines said a "cybersecurity incident" affected some of its IT systems, but noted that flights are operating as scheduled. The airline, which is owned by Alaska Air Group and averages 235 daily flights, first discovered the compromise on June 23, according to a June 27 filing with the US Securities and Exchange Commission.  "Upon learning of this event, we immediately took steps to safeguard Hawaiian's operations and systems," the Form 8-K reported. "Flights are currently operating safely and as scheduled. We have engaged the relevant authorities and experts to assist in our investigation and ongoing remediation efforts." Neither Hawaiian Airlines nor its parent company Alaska Air Group immediately responded to The Register's inquiries, including whether customer or employee data was stolen in the cyberattack, and whether the perpetrators deployed ransomware.  The airline first disclosed the digital intrusion at 7:45am HST on its website, and in a 1pm HST update said it is "continuing to address a cybersecurity event," and that the event has not affected customers' travel.  "As we navigate the ongoing event, we remain in contact with the appropriate experts and federal authorities," the alert continued. "We will provide updates as more information is available." The US Federal Aviation Administration told The Register that its safety office responsible for airline oversight remains in contact with Hawaiian Airlines.  "There has been no impact on safety, and the airline continues to operate safely," an FAA spokesperson said. "We are monitoring the situation." Neither the FBI nor CISA immediately responded to our requests for comment. Hawaiian Airlines' disclosure follows a similar one by Canadian airline WestJet, which, on June 13 said a "cybersecurity incident" disrupted some of its internal systems and its app, limiting customers' access to the company's website and WestJet app. In its most recent update posted on June 18, WestJet said it has made "significant progress" on resolving the issue, and launched an investigation with an assist from "third-party cyber security experts and forensic specialists." It's unknown whether the intruders accessed any sensitive data in the digital break-in, according to WestJet: "We are working as quickly as possible to assess any potential data in scope."