British Airways Locks Out Pilots and Cabin Crew Amid Cyber Threat Fears

LONDON— British Airways (BA) took a drastic step last week by locking hundreds of pilots and cabin crew out of key internal systems, following heightened concerns over an imminent cyberattack.

The move came without warning, disrupting crew operations and access to essential services at London Heathrow (LHR), BA’s primary hub, as well as systems managed by its parent company, International Airlines Group (IAG), PYOK exclusively reported.

Photo: British Airways

British Airways Locks Out Crew

British Airways (BA) implemented a sudden and unannounced lockout of crew access to vital operational platforms, impacting internal tasks such as flight assignments, training schedules, and commuter flight bookings.

Crew members, including pilots and flight attendants, discovered their access credentials were disabled only upon attempting to log in. Despite repeated contact with support departments, many were unable to restore access due to poor coordination and unclear guidance.

Sources reveal that the disruption was linked to the urgent deployment of new cybersecurity protocols by IAG, headquartered in Madrid.

These protocols were introduced to strengthen defenses amid increasing threats from cybercriminal groups, such as Scattered Spider, which is known for targeting large enterprises through social engineering and identity spoofing.

The crew was informed that password resets could only be completed via hard-wired BA terminals, a major obstacle for those located remotely or abroad.

As a result, many staff were effectively locked out of the system from thousands of miles away, raising concerns about operational resilience and contingency preparedness.

Photo: British Airways

FBI Warning Heightens Industry-Wide Alarm

The decision by BA coincided with a broader warning issued by the FBI’s Cyber Division, highlighting a growing cybersecurity threat against the aviation sector.

The FBI specifically cited Scattered Spider, a sophisticated hacking group employing social engineering to manipulate IT help desks and override multi-factor authentication (MFA) protocols.

The alert described how the group steals sensitive data for extortion and may deploy ransomware. It noted that these actors frequently impersonate employees or contractors to install unauthorized MFA devices, gaining deeper access to internal systems.

Although the FBI has not disclosed targeted carriers, the advisory follows recent incidents at major airlines. Notably, Qantas (QF), the Australian flag carrier, experienced a breach of nearly six million customer records via a compromised call center database.

Meanwhile, Delta Air Lines (DL) locked tens of thousands of SkyMiles accounts without notice, triggering speculation of potential exposure, though Delta denies any system breach.

Photo: Clément Alloing

British Airways’ Troubled Cyber History

This latest incident isn’t British Airways’ first brush with a cyber crisis. In 2018, the airline suffered a serious breach where hackers accessed personal data from over 400,000 customers and employees.

The breach exposed the airline’s inadequate cybersecurity posture, leading to a £180 million fine by the UK’s Information Commissioner’s Office (ICO)—later reduced to £20 million due to the financial impact of COVID-19.

British Airways continues to face legal repercussions from that breach, including a class action lawsuit representing affected customers. The legacy of that attack, combined with current threats, underscores why BA is now taking aggressive — albeit disruptive — defensive actions.

Industry Response and Implications

This episode reflects a broader reckoning within global aviation, where digital infrastructure remains highly vulnerable to cyberattacks.

Airlines are increasingly targeted due to the vast amounts of sensitive data they manage and the high stakes of operational disruption.

Security analysts warn that without robust, adaptive cybersecurity frameworks and better IT support systems, even temporary lockdowns like BA’s may become more frequent, with ripple effects on crew, passengers, and flight operations worldwide.

Stay tuned with us. Further, follow us on social media for the latest updates.

Join us on Telegram Group for the Latest Aviation Updates. Subsequently, follow us on Google News

The post British Airways Locks Out Pilots and Cabin Crew Amid Cyber Threat Fears appeared first on Aviation A2Z.