Mice Insights

(Brussels, 24 September 2025, MICE INSIGHTS) (Updated 25.09)

By Viviane Vaz

Travellers passing through several major European airports this week have been advised to brace for ongoing disruptions following a widespread cyberattack targeting airline check-in and boarding systems.

Brussels Airport remains one of the hardest-hit hubs, with around 10% of today’s flights cancelled, as the airport continues to recover from the incident.

“We continue to rely on alternatives to traditional check-in procedures in order to ensure that most of the flights scheduled for departure are able to operate,” Brussels Airport’s spokeswoman Ariane Goossens told the Belgian media.

The disruptions began late last week and have impacted operations at key European airports, including London 🇬🇧, Berlin 🇩🇪, Dublin 🇮🇪, and Brussels 🇧🇪.

The source of the issue has been traced to a ransomware attack on Collins Aerospace, a US-based software provider whose systems are widely used for check-in and boarding across multiple airlines. 

“The company [Collins Aerospace] has informed us that it may take several more days to provide a fully functional system,” a spokesperson for Berlin Brandenburg Airport told the German media.

According to the EU Agency for Cybersecurity (ENISA), the ransomware encrypted key systems locking out users and forcing airports to revert to manual check-in and boarding processes.

While some recovery has been reported —half of London Heathrow’s affected airlines, including British Airways, were operating with backup systems by Sunday—Brussels Airport continues to face difficulties. The Belgian airport confirmed that the service provider is “actively working on the issue” but did not offer a clear timeline for full resolution.

In an official statement, Brussels Airport urged passengers to:

🛫 Check flight status with airlines before heading to the airport
⏳ Arrive early (2 hours for Schengen 🇪🇺 / 3 hours for non-Schengen 🌍)
📡 Follow airport updates on official channels

Meanwhile, Heathrow Airport disclosed to the British media that due to the severity of the damage, some systems had to be completely rebuilt, with much of the restoration work needing to be done on-site.

Collins Aerospace reportedly relaunched its systems only to discover attackers still had access, prompting further caution.

The BBC informed that a person has been arrested in connection with the cyber-attack and that the National Crime Agency (NCA) said a man in his forties was arrested in West Sussex “as part of an investigation into a cyber incident impacting Collins Aerospace”.

According to French aerospace firm Thales, ransomware attacks are a growing threat in the aviation sector, with cyberattacks up over 600% in the past year. Such attacks can cost organizations millions and take weeks or months to fully recover from.

✈️ What Travellers Should Do

If you are flying through one of the affected airports in the coming days, be proactive:

📱 Check your airline’s app or website regularly for updates
⏰ Allow extra time for check-in and security
📝 Be prepared for manual check-in procedures and potential delays
📜 Know your rights: In the EU, passengers are entitled to compensation or rebooking in the event of significant delays or cancellations

As the aviation industry works to contain and recover from this unprecedented disruption, patience and preparation will go a long way for those heading to the skies.