Major Ransomware Attack Cripples Airport Systems
Collins Aerospace, a leading American aviation technology company, faces a massive $5-10 million ransom demand following a sophisticated cyberattack that has disrupted operations at Brussels Airport and several other European hubs. The attack, which occurred on September 21, 2025, targeted the company's MUSE check-in and baggage-drop software, forcing airports to revert to manual processing systems.
Expert Analysis: Why Payment is Inevitable
According to cybersecurity expert Geert Baudewijns, CEO of Secutec, Collins Aerospace has little choice but to pay the ransom. 'For a classic cyberattack with ransomware, between $50,000 and $1 million is typically demanded. But based on my experience, I estimate this attack will require payment between $5 and $10 million,' Baudewijns stated.
The expert, who negotiates with hackers 4-6 times weekly, explained that Collins Aerospace's history makes payment likely. 'The company was hacked two years ago by different cybercriminals. They made a deal and paid then, and they will undoubtedly do so again now.'
Critical Passenger Data at Risk
The situation is particularly dire because thousands of passenger records have been compromised. 'I assume thousands of passenger records have been stolen - names, addresses, birth dates, phone numbers. Essentially all the identity data you provide when booking a flight,' Baudewijns warned.
If no deal is reached, this sensitive information could be sold to other criminals on the dark web, leading to targeted phishing attacks similar to the Limburg.net breach that affected over 400,000 people.
Time Pressure Escalates Ransom Demands
The aviation sector's time-sensitive nature increases the ransom's value. 'Every minute without connection to the software means passengers cannot check in automatically. Each minute counts and gives you less room to negotiate,' Baudewijns explained.
The attack used Locky Locker ransomware, deployed by one of approximately ten global hacking groups known to use this sophisticated malware. Recovery is expected to take 4-5 working days even after payment, with Brussels Airport already announcing continued disruptions and flight cancellations for Monday.