On December 26, 2024, Japan Airlines (JAL) reported experiencing cyberattacks affecting their network systems, causing significant delays for both domestic and international flights.
The company announced the issue began around 7:24 AM when their internal and external network equipment faced unusual high-load access, which disrupted functionalities such as the automated baggage drop-off system. By 10:00 AM, at least 24 domestic flights were experiencing delays of over 30 minutes, with potential increases expected as the situation developed.
Due to the cyberattack's impact, JAL halted new ticket sales for all flights departing on the same day. “We sincerely apologize for the inconvenience caused to our customers and stakeholders,” said the company. Despite the interruptions, JAL emphasized there was no impact on flight safety.
Reports from Haneda Airport indicated travelers showing signs of anxiety due to the disruptions early on New Year’s travel peaks. One passenger heading to Fukuoka commented, “The baggage check took longer than usual, and there was also a delay with issuing the receipts.” By 10:00 AM, the airline could confirm delays affecting at least 14 flights.
Flight disruptions worsened, prompting JAL to intensify its system recovery efforts. The company reached out to the Tokyo Metropolitan Police for assistance, signaling the seriousness of the cyber breach investigation.
Many customers at the busy airport, eager to return to family for the holidays, sought clarity on their travel plans. “I came earlier thinking the airport might be chaotic due to the cyberattack, but thankfully my flight remains on schedule,” shared one Tokyo-based businesswoman.
During the investigation, authorities noted JAL had temporarily blocked the router identified as vulnerable during the attack to prevent additional data loss and confirm the overall system's integrity.
Law enforcement agencies are launching investigations around the nature of the cyberattack, considering charges related to electronic computers and operational disruptions. “We have received reports from JAL of the cyberattack and are verifying the situation as it develops,” said police officials.
Other airlines like All Nippon Airways (ANA) and Skymark have reported no cybersecurity issues, but the event has raised eyebrows about the broader industry’s resilience against such attacks.
The planned recovery process focuses on restoring normal operations without compromising passenger safety. JAL reassured its passengers about their preparedness for addressing cybersecurity threats as they aim to expedite ticket processing to assist stranded travelers.
Travelers faced with uncertainties are urged to check directly with the airline for the latest updates on their flights and any assistance they may require. Customer service teams remain on-site to help navigate the changes during this busy travel time.
