A series of coordinated cyberattacks and drone incursions have exposed significant vulnerabilities in Europe’s aviation infrastructure, raising concerns about the region’s preparedness against hybrid threats.
Cyberattacks Disrupt Major Airports
On September 20, 2025, a ransomware attack targeted Collins Aerospace’s vMUSE check-in and boarding system, affecting major European airports, including London’s Heathrow, Berlin, and Brussels. The attack disrupted flight operations and caused widespread travel delays. UK police have arrested a man in his 40s in connection with the cyberattack, though no group has claimed responsibility.
Drone Incursions Halt Airport Operations
Simultaneously, drone incursions disrupted operations at Copenhagen and Oslo airports. In Copenhagen, the busiest hub in Scandinavia, flights were halted for nearly four hours, while Oslo Airport ceased operations for three hours. Danish authorities suspect a sophisticated operator was behind the incursions, describing the incident as a severe act against critical infrastructure .
Hybrid Threats and Security Concerns
Experts view these incidents as potential “hybrid threat” tests aimed at evaluating and straining Europe’s response capabilities. Danish Prime Minister Mette Frederiksen linked the Copenhagen drone activity to suspected Russian interference, though Moscow denies involvement . The sophistication of the drones and the timing of the cyberattacks suggest a coordinated effort to exploit weaknesses in aviation security.
Calls for Enhanced Security Measures
In response to these incidents, European aviation authorities are urging for enhanced cybersecurity protocols and infrastructure preparedness. Eurocontrol and other agencies are supporting mitigation efforts, while calls grow for tighter standards on aviation IT systems and greater investment in emerging counter-drone technologies
Read More : Pakistan Downs 77 Indian Drones, Confirm Security Sources
