Staff resorted to handwritten boarding passes. Flights were canceled. Queues stretched through terminals. Manual processes couldn’t handle the volume. The impact varied dramatically depending on how airlines had prepared.
The attack exposed a fundamental architectural weakness. Airlines relying entirely on centralized, shared infrastructure had no backup. When airport kiosks and traditional check-in desks stopped working, operations shut down.
According to the World Economic Forum’s Global Cybersecurity Outlook 2025, 54 percent of large organizations believe supply-chain challenges are one of the biggest hurdles in achieving cyber resilience.
Single points of failure in shared systems can disrupt physical airport operations for days. Cybersecurity Ventures estimates global cybercrime losses could exceed $10 trillion per year by 2025, with aviation particularly exposed due to its interconnected systems.
“From our experience in aviation software development, we saw firsthand that airlines with a thorough operational resilience plan, such as a decentralized system to limit damage from localized attacks, maintained operations,” writes Stoyan Mitov, CEO of Dreamix, a custom software development company, in a Forbes article. “An airline (one of our clients) using an independent mobile boarding platform reported continued operations at affected airports. Ground agents equipped with mobile devices maintained passenger processing activities independently of centralized infrastructure.”
Airlines don’t need to rip out existing systems. Mitov believes that the path forward requires strategic thinking about architectural flexibility, not wholesale replacement.
Read the Full Story