Cyber Attack cyber

WestJet

Jun 13, 2025 2 min read
WestJet

WestJet, a Calgary-based airline, detected a cybersecurity incident on **June 13** involving a **sophisticated criminal third party** who gained unauthorized access to its systems. While flight operations remained unaffected, the breach resulted in the exposure of **personal information of U.S. residents**, though no financial data (credit/debit card numbers, CVV codes, expiry dates) or guest passwords were compromised. The incident initially caused **intermittent disruptions** to WestJet’s website and mobile app. After a thorough investigation, the airline confirmed the theft of data and is now notifying affected individuals, advising them to monitor financial statements and credit reports for suspicious activity. WestJet has contained the incident but continues analysis in collaboration with cybersecurity experts and law enforcement. The company emphasized regret and urged vigilance among customers and employees.

Source: https://toronto.citynews.ca/2025/09/29/westjet-airline-cybersecurity-incident-update-data-breach/

TPRM report: https://www.rankiteo.com/company/westjet

"id": "wes0094000092925",
"linkid": "westjet",
"type": "Cyber Attack",
"date": "6/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'U.S. residents (number '
                                              'unspecified)',
                        'industry': 'Aviation',
                        'location': 'Calgary, Canada',
                        'name': 'WestJet',
                        'type': 'Airline'}],
 'customer_advisories': ['Direct notifications to affected U.S. residents',
                         'Website guidance for monitoring accounts and credit '
                         'reports'],
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'Moderate to High (personal '
                                        'information, potential identity theft '
                                        'risk)',
                 'type_of_data_compromised': 'Personal information (specific '
                                             'types unspecified, excluding '
                                             'payment details and passwords)'},
 'date_detected': '2023-06-13',
 'date_publicly_disclosed': '2023-06-13',
 'description': 'WestJet detected suspicious activity on its systems on June '
                "13, 2023, attributed to a 'sophisticated, criminal third "
                "party' who gained unauthorized access. While flight "
                'operations were unaffected, some personal data of U.S. '
                'residents was compromised. The airline has completed an '
                'analysis of the stolen data and is notifying affected '
                'individuals. No credit card, debit card, CVV codes, expiry '
                'dates, or guest passwords were accessed. Intermittent '
                'disruptions to the website and mobile app were reported '
                'during the incident.',
 'impact': {'brand_reputation_impact': 'Potential reputational harm due to '
                                       'data exposure',
            'data_compromised': 'Personal information of U.S. residents (exact '
                                'details unspecified)',
            'downtime': 'Intermittent disruptions (duration unspecified)',
            'identity_theft_risk': 'Possible (customers advised to monitor '
                                   'accounts and credit reports)',
            'operational_impact': 'None (flight operations unaffected)',
            'payment_information_risk': 'None (no credit/debit card numbers, '
                                        'CVV codes, or expiry dates accessed)',
            'systems_affected': ['Website', 'Mobile App']},
 'investigation_status': 'Ongoing (analysis continues, containment complete)',
 'ransomware': {'data_exfiltration': True},
 'recommendations': ['Customers advised to monitor account statements and '
                     'credit reports for suspicious activity',
                     'Exercise caution when sharing personal information'],
 'references': [{'source': 'WestJet Public Statement (June 2023)'},
                {'source': 'WestJet Notice to U.S. Residents (Latest Update)'}],
 'response': {'communication_strategy': ['Direct notifications to affected '
                                         'U.S. residents',
                                         'Public statements',
                                         'Website guidance for customers'],
              'containment_measures': 'Completed (as of latest update)',
              'incident_response_plan_activated': True,
              'law_enforcement_notified': True,
              'third_party_assistance': ['Cybersecurity experts']},
 'stakeholder_advisories': 'Regular updates provided as investigation unfolds',
 'threat_actor': 'Sophisticated, criminal third party',
 'title': "WestJet Cybersecurity Incident Affecting U.S. Residents' Personal "
          'Information',
 'type': ['Data Breach', 'Unauthorized Access']}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.