Japan Airlines (JAL) experienced an operational disruption on December 26, 2024, following a cyberattack that impacted its systems. Japan Airlines cyberattack caused delays across both domestic and international flights, prompting the airline to temporarily suspend ticket sales for same-day departures. While the cyberattack caused significant inconvenience to travelers, JAL assured the public that flight safety was not compromised.
The cyberattack on Japan Airlines began at 7:24 AM JST on December 26, when the company detected an issue with its network equipment connecting internal systems to external networks. This problem caused a malfunction in the communication systems, disrupting the interaction between JAL’s internal systems and external platforms.
Within 90 minutes, JAL had taken immediate action by shutting down the affected router device to prevent further damage. However, the impact on JAL’s operations was felt throughout the day, with more than 40 flights delayed across various airports in Japan.
Details into the Japan Airlines Cyberattack
The airline temporarily halted bookings for same-day flights and disabled its mobile app, further frustrating passengers. Later in the afternoon, JAL announced that it had resumed ticket sales for same-day flights and restored its disrupted systems. The airline assured customers that no data had been compromised and confirmed there was no evidence of a virus or data breach.
“Since 7:24 AM on December 26, 2024, there was a disruption in the network equipment connecting internal and external systems, resulting in malfunctions in systems communicating with external systems,” JAL stated in an update. “The cause of the failure and the impact range of the system issues have been identified, and the system has been restored. There has been no customer data leakage or virus damage.”
Despite the technical difficulties, JAL insisted that the safety of its flights was not impacted by the cyberattack. The airline confirmed that the disruption affected operations but did not compromise flight security. Sales for both domestic and international flights gradually resumed later in the day.
The disruption also led to the suspension of standby services for domestic flights, though no international flights were canceled. According to the public broadcaster NHK, by noon on Thursday, more than 40 flights had been delayed at various airports across Japan, with approximately 28 percent of JAL’s scheduled flights being affected. Some of these delays were related to the cyberattack, while others were due to unrelated issues.
Investigation into the Cyberattack on Japan Airlines
JAL promptly launched an investigation into the cyberattack to uncover its origins and identify the perpetrators. The airline’s cybersecurity team acted swiftly to determine the cause of the disruption and implement corrective measures. Although no immediate claims of responsibility had been made, JAL’s management prioritized resolving the technical issues and fortifying its defenses to prevent future incidents.
In an official statement addressing the situation, JAL expressed its condolences, saying: “We would like to once again express our sincere prayers for those who lost their lives on the Japan Coast Guard airplane. We extend our deepest condolences to their families and associates. Additionally, we deeply regret the great distress and inconvenience caused to all passengers, their families, and related parties who were on board our flight.”
