FBI Warns of Cybercriminal Group Targeting US Airlines

Image: Cybersecurity is becoming increasingly important. (Photo Credit: Song_about_summer / AdobeStock)

by Lacey Pfalz
Last updated: 1:00 PM ET, Sat June 28, 2025

Several North American airlines were targeted by cybercriminals this past week, leading the Federal Bureau of Investigation to issue an alert about cybercriminal group Scattered Spider.

The alert followed two cybersecurity incidents with Hawaiian Airlines and WestJet this week, though no flights were impacted. The two airlines are assessing if there was any damage or security leaks.

According to NBC News, WestJet employees realized there was a hack on June 13 and have been working to resolve the issue, without impacting flights or safety.

Meanwhile, Hawaiian Airlines filed a report with the Securities and Exchange Commission this week, noting that, “On June 23, 2025, Hawaiian Airlines, an Alaska Air Group, Inc. subsidiary, identified a cybersecurity incident affecting certain information technology systems. Upon learning of this event, we immediately took steps to safeguard Hawaiian’s operations and systems. Flights are currently operating safely and as scheduled. We have engaged the relevant authorities and experts to assist in our investigation and ongoing remediation efforts.”

This isn’t the first time the group has targeted travel corporations; Scattered Spider is the same organization responsible for hacking MGM Resorts and Caesars Entertainment back in 2023. The attack on MGM Resorts cost the hotel group an estimated $100 million upfront, and victims of both cyberattacks filed lawsuits against the hotel corporations.

The FBI notice reads: “The FBI has recently observed the cybercriminal group Scattered Spider expanding its targeting to include the airline sector. These actors rely on social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access…Once inside, Scattered Spider actors steal sensitive data for extortion and often deploy ransomware. The FBI is actively working with aviation and industry partners to address this activity and assist victims…”

According to CNN, the aviation sector is the third to be hit in two months by Scattered Spider; they previously hacked health insurance company, Aflac, along with retailers Red Lion, Giant and Ahold Delhaize USA.

For the latest travel news, updates and deals, subscribe to the daily TravelPulse newsletter.

Topics From This Article to Explore

Hawaiian Airlines WestJet Airlines and Airports Technology Industry Insider

Travel Advisors Teatime: Selling Asia Travel

Lacey Pfalz

Associate Editor

Lacey Pfalz is Associate Editor at TravelPulse. She's a passionate advocate of responsible travel and believes the best travel experiences happen outside of a planned itinerary. Lacey currently lives in rural Wisconsin. She can be reached at lpfalz@ntmllc.com.