Japan Airlines (JAL) has successfully restored its systems following a cyberattack on Thursday that caused significant disruptions to both domestic and international flights. The airline, Japan’s second-largest after All Nippon Airways (ANA), quickly addressed the issue and confirmed that all systems were operational again.
According to JAL, the attack, described as a “large data attack,” did not compromise any customer information, and flight safety was not affected. The airline assured passengers that despite the interruption, there was no security breach and that the disruption was limited to system malfunctions. JAL posted an update on the social media platform X, providing details about the situation and reassuring customers.
Japanese media reports suggest that the attack may have been a Distributed Denial of Service (DDoS) attack, where servers or websites are overwhelmed by excessive traffic, causing them to crash or become unresponsive. This type of cyberattack is designed to disrupt operations without necessarily gaining unauthorized access to sensitive data.
As a result of the attack, JAL temporarily halted ticket sales for flights departing on Thursday, both domestically and internationally. However, the suspension was lifted as systems were restored, and ticket sales resumed. The airline also confirmed that while the cyberattack did not cause any major disruption, 24 domestic flights were delayed by more than half an hour due to issues with the baggage check-in system. Several airports in Japan experienced delays, particularly with check-in procedures, which caused further inconvenience for passengers.
Despite the inconvenience, the impact on JAL’s operations was relatively contained. The airline’s stock price initially fell by as much as 2.5 percent during the morning trading session after news of the cyberattack broke. However, the shares later recovered, and by the afternoon, they were down only 0.2 percent.
JAL’s recovery from the cyberattack highlights the growing threat of cyberattacks on the aviation industry and other sectors in Japan. This incident is not an isolated case. Japan has seen several high-profile cyberattacks in recent years, with multiple industries being targeted. In 2023, Japan’s space agency, JAXA, was hit by a cyberattack, although no sensitive information related to rockets or satellites was compromised. In the same year, one of Japan’s busiest ports suffered a ransomware attack blamed on the Russia-based Lockbit group.
Additionally, in 2022, a cyberattack on a Toyota supplier forced the automaker to halt operations at several domestic plants, showcasing the far-reaching consequences that such attacks can have on the country’s economy and infrastructure. Even Niconico, a popular Japanese video-sharing website, fell victim to a large-scale cyberattack in June 2024.
This wave of cyberattacks has raised concerns about the vulnerability of Japan’s digital infrastructure. With more companies and organizations relying on digital systems, the risk of such attacks is growing. The ability of JAL to quickly restore its services is a testament to the airline’s cybersecurity protocols and response capabilities. However, the recurring nature of these incidents calls for stronger measures to defend against cyber threats in the future.
In addition to the cyberattack, JAL has been dealing with another challenging incident. A separate investigation by a transport ministry committee concluded that a fatal collision at Tokyo’s Haneda Airport in January 2024, involving a JAL passenger jet and a coast guard plane, was caused by human error. The crash, which resulted in the deaths of five people, occurred when the pilot of the smaller coast guard plane mistakenly entered the runway, leading to the collision. Despite the tragedy, all 379 people on board the JAL aircraft escaped just before it was engulfed in flames.
While the cyberattack on Japan Airlines was a major inconvenience, the airline’s swift response helped mitigate its impact on customers and operations. The broader context of cyberattacks across various sectors in Japan highlights the need for heightened vigilance and investment in cybersecurity to protect both private and public infrastructure.
