Sea-Tac Airport Hit by Major Cyberattack from Rhysida Ransomware Gang
The Port of Seattle confirms a ransomware attack disrupted airport operations for three weeks, but refuses to pay the ransom.
- The cyberattack, initiated on August 24, caused significant disruptions at Seattle-Tacoma International Airport, including internet and technology outages.
- Rhysida, a known ransomware gang, encrypted access to some data and forced airport agents to resort to manual processes like handwriting boarding passes.
- Despite the attack, the Port of Seattle has not identified any unauthorized activity since the initial breach and maintains it is safe to travel.
- The Port of Seattle has refused to pay the ransom, although this may result in stolen data being posted on the dark web.
- Efforts are ongoing to restore all affected services, with most systems back online but some, like the airport website and app, still being worked on.