UK Arrest in Ransomware Attack That Major European Airports

UK authorities have arrested a man in connection with a ransomware attack that caused significant disruptions at several major European airports. The U.K.’s National Crime Agency (NCA) confirmed that the suspect, “in his forties,” was detained in West Sussex on Tuesday and released on conditional bail.

The cyberattack targeted check-in systems provided by Collins Aerospace on Friday, September 19, 2025, leading to delays and operational disruptions at Brussels, Berlin, Dublin, and London Heathrow airports. The disruptions persisted until September 23, impacting thousands of passengers across Europe.

Paul Foster, deputy director and head of the NCA’s National Cyber Crime Unit, said: “Although this arrest is a positive step, the investigation into this incident is in its early stages and remains ongoing.”

NCA spokesperson Richard Crowe told TechCrunch that the agency had no further comments beyond the official press release.

This incident highlights the growing risks of cyberattacks on critical infrastructure and underscores the importance of robust cybersecurity measures in the aviation sector. Authorities continue to investigate to determine the full extent of the attack and potential accomplices.

FAQ Section

Q1: What happened in the European airport ransomware attack?
A: A ransomware attack targeted check-in systems provided by Collins Aerospace, causing delays and disruptions at Brussels, Berlin, Dublin, and London Heathrow airports.

Q2: Who was arrested in connection with the attack?
A: A man in his forties was arrested in West Sussex by the U.K.’s National Crime Agency (NCA) and released on conditional bail.

Q3: How long did the airport disruptions last?
A: The delays and disruptions started on September 19, 2025, and continued until September 23, affecting thousands of passengers.

Q4: What is the NCA’s response to the incident?
A: The NCA stated that the arrest is a positive step but the investigation is still in its early stages and ongoing.

Q5: Why is cybersecurity important for airports?
A: Airports are critical infrastructure, and cyberattacks can severely disrupt operations, affecting travel safety and schedules. Strong cybersecurity measures are essential to protect systems and passenger services.

Topics: Berlin, Brussels, Collins Aerospace, Dublin, Europe, Heathrow, London Heathrow, NCA, Security, United Kingdom