Canadian airline WestJet has confirmed that some passenger information was exposed in a cybersecurity breach earlier this year.
Suspicious Activity Detected in June
The airline reported that it first detected unusual activity on June 13. After investigating, it found that a criminal third party had gained unauthorized access to its internal systems.
The airline said the attack used advanced methods. This shows that organized cybercriminals were likely involved. The breach let hackers access some passenger booking data. This discovery raises concerns about the safety of personal data. Airlines rely a lot on digital systems, making them a target.
The airline assured that it responded quickly after spotting the suspicious activity. Security experts were brought in to confirm the scale of the breach and to stop further exposure of sensitive information. WestJet has said that it has taken additional measures to strengthen its systems since the incident.
Type of Data Exposed
WestJet revealed that the type of information exposed varied from person to person. It may include passenger names, contact details such as phone numbers and emails, travel-related information, and certain documents tied to reservations. This means that basic details about passengers and their travel history could have been accessed by the unauthorized party.
Cyberattack cripples MUSE systems, throwing Berlin and Heathrow airports into travel chaos
Importantly, the airline stressed that no payment-related data was stolen. This includes credit card and debit card numbers, expiration dates, and CVV codes. Customers have been reassured that their financial details remain secure despite the breach.
While the exposure of personal details can still raise risks of misuse, the absence of financial data has prevented the situation from becoming even more damaging. WestJet is continuing to monitor the situation closely and is in touch with affected individuals where required.
Law Enforcement and Official Notifications
After finding the breach, WestJet worked with Canadian and U.S. authorities. The airline said it contacted the Canadian Centre for Cyber Security. It also worked with the Federal Bureau of Investigation in the United States. The goal was to investigate the breach fully. The cooperation also helped collect evidence to track the criminals.
In addition, WestJet sent notices to U.S. residents who were affected by the breach. It also informed the attorneys general of several U.S. states where passenger information may have been exposed. Such steps are required by law to keep regulators updated and to maintain transparency with customers.
Airports thrown into turmoil as cyberattack crashes check-in backbone used by 100 airlines
This incident comes at a time when airlines are often targeted by hackers. Aviation companies now depend heavily on digital systems. Just weeks ago, a ransomware attack hit Collins Aerospace. The attack disrupted airport operations in Europe. Busy airports like London’s Heathrow and Berlin were affected. These repeated attacks show how hard it is for the industry to protect large amounts of passenger data.
For now, WestJet says it is taking steps to protect its systems. The airline is also keeping passengers informed. It has apologized to the people affected. WestJet is still working with law enforcement agencies.
