A cyberattack on Collins Aerospace, a key aviation systems provider and subsidiary of RTX, has disrupted check-in and baggage operations at several major European airports, leading to widespread delays and cancellations on Saturday. London’s Heathrow Airport, Europe’s busiest hub, confirmed that passenger processing was hampered after Collins Aerospace’s systems experienced what it described as a “technical issue.” Brussels Airport and Berlin Brandenburg Airport also reported being hit, warning travelers of long queues and disruptions.
Brussels Airport said the incident, which began late Friday, rendered automated check-in and baggage handling inoperable, forcing staff to process passengers manually. “This has a large impact on the flight schedule and will, unfortunately, cause delays and cancellations,” the airport said in a statement. Berlin Airport issued a similar advisory, cautioning passengers to expect longer wait times as technicians worked to restore normal operations.
RTX, Collins Aerospace’s parent company, acknowledged the disruption in an emailed statement, describing it as “cyber-related.” The company stressed that the issue was confined to electronic check-in and baggage systems and could be bypassed using manual procedures. “We are working to fix the issue as quickly as possible,” the statement read. Despite the disruption, Frankfurt Airport—Germany’s busiest—and Zurich Airport both reported that they had not been affected.
Major airlines sought to reassure passengers amid growing concerns about cascading delays. EasyJet said its flights were operating normally and that no significant disruption was expected to its weekend schedule. Ryanair and British Airways owner IAG did not immediately respond to requests for comment. Meanwhile, Poland’s deputy prime minister and digital affairs minister, Krzysztof Gawkowski, said there was no evidence that Polish airports had been impacted. Passengers traveling from the affected airports have been advised to check with their airlines before heading out, as delays and cancellations are expected to persist until systems are fully restored.
The incident highlights the aviation industry’s growing vulnerability to cyber threats. Over the past year, hackers, cybercriminals, and state-linked actors have increasingly targeted critical aviation infrastructure. In July 2025, Russian carrier Aeroflot was hit by a major cyberattack that forced the cancellation of more than 100 flights and caused chaos across its international routes. Earlier this year, airports worldwide also reported disruptions linked to hacktivist-led denial-of-service (DDoS) campaigns and ransomware incidents. In one notable case, Kuala Lumpur International Airport was forced to switch to manual operations for several hours after a ransomware attack crippled key systems. Aviation analysts warn that the latest Collins Aerospace attack underlines the global industry’s dependence on a small number of IT vendors, making such incidents especially disruptive.
