WestJet Airlines is responding to a cybersecurity incident that has disrupted its digital services, raising broader questions about cyber risk exposure and insurance coverage in the aviation sector.
The Calgary-based carrier, Canada’s second-largest airline, confirmed that it detected the breach on June 13. The incident has affected access to WestJet’s mobile app, website, and some internal systems. While flight operations have not been impacted, the disruption has prompted an ongoing investigation in coordination with law enforcement and Transport Canada.
“We have activated specialized internal teams in cooperation with law enforcement and Transport Canada to investigate the matter and limit impacts,” the airline said in a statement.
WestJet has not provided details on the source or nature of the breach and has not indicated whether customer or employee data was accessed. It has also not disclosed whether a ransom demand was issued. As of June 15, the company reported ongoing efforts to secure its systems and restore full digital functionality.
The incident has potential implications from an insurance and risk management standpoint. Cyber insurance policies often cover business interruption, forensic investigations, legal costs, and data breach response. If personal data was compromised, WestJet could face notification requirements and regulatory obligations that may fall under the scope of such policies.
The company has advised employees and guests to exercise caution when sharing personal information, citing the risk of phishing or other fraudulent activity following a cyber incident.
The breach comes amid a growing number of cyberattacks targeting transportation and infrastructure sectors in Canada. Similar incidents have led to increased scrutiny around digital resilience and the adequacy of insurance protection for critical service providers.
WestJet has committed to issuing updates every 12 hours or sooner as more information becomes available. The company has also acknowledged the disruption and stated that efforts are underway to minimize the impact on guests and staff.
