UK Cyberattack Arrest Disrupts Heathrow and European Airports as Travel Sector Faces Growing Threats

A man in his forties has been apprehended in West Sussex as part of the ongoing investigation into the cyberattack that caused significant disruption to flights at London Heathrow and several major European airports last weekend. The National Crime Agency (NCA) has confirmed the arrest, conducted under suspicion of offences related to the Computer Misuse Act. The individual has since been released on conditional bail as enquiries continue.

The incident, which first emerged last Friday, directly impacted the systems of Collins Aerospace, a critical provider of check-in desk technology utilised by numerous airlines. As airport operations ground to a halt, airlines dependent on the Collins system were compelled to revert to manual check-in procedures. Approximately twenty flights at Heathrow alone were cancelled, while the majority of services experienced notable delays. Brussels endured the most severe disruption, with airports in Berlin and Dublin also reporting operational setbacks.

The NCA’s deputy director and national cyber crime unit head, Paul Foster, commented that the arrest represents a promising development, although the investigation remains at an early stage. He highlighted the persistent global nature of cybercrime and emphasised the NCA’s commitment, working alongside domestic and international partners, to protect the British public and minimise threats to national infrastructure.

This attack forms part of a wider surge in cyber breaches targeting major UK firms throughout the year. Notably, Jaguar Land Rover, the nation’s largest automotive employer, was recently forced to suspend production for weeks owing to a separate cyber incident. Retail giants such as Marks & Spencer and the Co-op have also encountered costly disruptions. Collins Aerospace, affected in the latest incident, is owned by RTX, a major global aerospace and defence group listed in New York.

For the travel and aviation sector, this event underscores the acute vulnerability of essential technical systems to external threats. The operational and financial impact of such attacks can be profound, with ripple effects felt across industries. The continuing investigation by the NCA aims to provide assurance to the public and wider business community as efforts to tackle sophisticated cybercrime intensify.