WestJet reports a cybersecurity incident impacting internal systems and its app. Investigation underway with law enforcement and Transport Canada.
Airline Confirms System Disruption Amid Cybersecurity Threat
WestJet Airlines confirmed Friday it is responding to a cybersecurity incident that has disrupted access to some of its internal systems and customer-facing app. The Calgary-based airline said the issue has caused “restricted access” for several users attempting to use its services.
In a public statement, WestJet announced it has activated internal cybersecurity teams and is working closely with law enforcement and Transport Canada to investigate the breach and limit its effects.
Disruption Reported, but Flight Operations Continue
Despite the system limitations, WestJet said Saturday morning that its flight operations remain safe and unaffected. Passengers have not reported major travel disruptions, but some may face challenges accessing app services, such as checking in or managing bookings.
The company did not specify whether customer or employee data had been compromised but emphasized that understanding the full extent of the breach remains ongoing.
Company Response Prioritizes Safety and Data Protection
WestJet says it is “expediting efforts” to contain the incident, restore systems, and protect sensitive information. In the interim, it has issued a caution to all users and employees to remain vigilant and avoid sharing personal information unless absolutely necessary.
The airline has not disclosed how the breach occurred or who may be behind it, saying it is “too early to speculate” while the investigation continues.
Authorities Involved in Coordinated Investigation
The cybersecurity breach is being investigated in coordination with federal partners. Law enforcement agencies and Transport Canada are assisting WestJet to trace the incident’s origin and assess any broader security risks.
Cybersecurity experts say such breaches, particularly involving aviation companies, can range from ransomware attacks to targeted data exfiltration attempts. However, no group has yet claimed responsibility, and WestJet has not identified any specific threat actors.
Unanswered Questions Remain as Investigation Proceeds
How many individuals have been impacted and whether any personal or financial data was accessed. The company has not confirmed the scope of the breach or provided a timeline for full system recovery.
WestJet has pledged to keep the public informed and issue further updates as soon as more information becomes available.
Heightened Vigilance Urged for Customers and Staff
Until the investigation concludes, WestJet is urging employees and customers to monitor accounts for unusual activity and avoid unsolicited communications requesting sensitive data.
As digital threats become more sophisticated, incidents like this highlight the vulnerability of essential service providers and the need for robust cybersecurity measures in the airline industry.
The story remains developing.
