• United States



Ransomware hits UK’s Bristol Airport, affects flight information screens

Sep 17, 20183 mins

Ransomware is being blamed for non-working flight information screens at Bristol Airport in the UK over the weekend.

ransomware breach hackers dark web
Credit: Getty Images

When travelers at Bristol Airport in the U.K. looked at flight information screens over the weekend, they saw a blue screen with white lettering that stated:


We are sorry for the inconvenience. Our Engineers are currently working to resolve the issue as soon as possible.

Officials for the U.K.’s ninth busiest airport blamed it on a ransomware attack. The airport chose to take the electronic screens that normally direct travelers offline on Friday as a “precautionary measure” while they worked to “contain the problem.”

Arrival and departure information was instead posted on whiteboards and announced over the public speaker system over the weekend.

Bristol Airport tweeted about the “technical problems” with the flight information screens, making it clear that flights were unaffected.

While airport spokesman James Gore did not specify what ransomware variant hit the airport, he told the BBC that Bristol Airport would not pay the undisclosed ransom demand to get the system working.

We believe there was an online attempt to target part of our administrative systems and that required us to take a number of applications offline as a precautionary measure, including the one that provides our data for flight information screens. That was done to contain the problem and avoid any further impact on more critical systems.

Details of the cyber attack

The flight screens were offline starting Friday morning, all of Saturday, and into the wee hours of Sunday. Gore blamed the long downtime on a “cautious approach” as IT rebuilt affected systems, but “at no point were any safety or security systems impacted or put at risk.”

The airport released a statement to the press about the administrative systems being subjected to an “on-line criminal attempt. A number of processes, including the application providing data for flight information screens in the terminal, were taken off line purely as a precautionary measure, while the problem was contained and to avoid any further impact.”

The plan to use whiteboards, use additional announcements over the speakers, and bring in extra staff to keep passengers informed of flight information was part of an “established contingency plan.”

Bristol Airport always remains vigilant against all types of hostile on-line activity. As with every event of any type we will monitor and keep under review how to avoid it re-occurring. However, it is important to recognize that security measures already in place ensured minimum disruption to passenger journeys.

As is always the case in cyber attacks that result in computers being replaced by manually writing things down, people took to social media to complain about delays. At roughly 4:30 a.m. local time on Sunday, Bristol Airport tweeted a photo of the restored live flight information on the digital screens. Those restored screens were working in “key locations.”

The airport followed that up with the following announcement:

ms smith

Ms. Smith (not her real name) is a freelance writer and programmer with a special and somewhat personal interest in IT privacy and security issues. She focuses on the unique challenges of maintaining privacy and security, both for individuals and enterprises. She has worked as a journalist and has also penned many technical papers and guides covering various technologies. Smith is herself a self-described privacy and security freak.