ADVERTISEMENT

Collins Aerospace attack claimed by Everest, linking ransomware group to last month's European airport chaos

The Everest ransomware group has claimed responsibility for the September breach of Collins Aerospace and its MUSE check-in software. The attack impacted multiple major airports across Europe and caused travel chaos for days.

Collins Aerospace logo

Jens Büttner/picture alliance via Getty Images

Stefanie Schappert
Stefanie Schappert Senior Journalist
Oct 18, 2025 Updated: 20 October 2025 3 min read
Key takeaways:
Everest Collins Aerospace claim post 1
Everest leak site. Image by Cybernews.
Everest Collins Aerospace claim post 2
Everest leak site. Image by Cybernews.

European airports suffered days-long disruptions

RTX, Collins Aerospace ransomware attack
People stand in front of the departure board at the Berlin Brandenburg Airport (BER) on September 28th, 2025, after a ransomware attack on Collins Aerospace impacts several European airports. The passenger and baggage handling system was still down at BER roughly a week after the attack. Annette Riedl/Getty Images
ADVERTISEMENT
RTX Collins Aerospace
Jakub Porzycki/NurPhoto via Getty Images

Who is Everest?

Everest Ransomlooker Oct 2025
The Everest ransomware group has claimed over 105 victims in the past 12 months, as shown on the Cybernews Ransomlooker tool. Snapshot taken on October 17th, 2025. Image by Cybernews.
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT