In September 2023, a ransomware attack targeted major European airports, causing severe operational disruptions as documented in NCC Group’s report. The cyberattack forced airlines to revert to manual processes, leading to widespread flight delays, cancellations, and passenger congestion. Critical systems—likely tied to check-in, baggage handling, or air traffic coordination—were compromised, paralyzing core infrastructure. The incident underscored the vulnerability of transportation hubs to ransomware, where even short-term outages cascade into systemic chaos. While the report does not specify data exfiltration, the operational halt and reputational damage align with patterns where attackers exploit high-stakes environments to maximize pressure for ransom payments. The attack’s timing coincides with Qilin’s surge in activity, a group known for targeting supply-chain-dependent sectors, though direct attribution to Qilin was not confirmed in this case. The disruption’s scale suggests the attackers prioritized maximizing leverage over data theft, leveraging the airports’ inability to function without digital systems.