Opening incident

Loading disclosure

Pulling the filing, breach taxonomy, and impact scoring…

Duke

Blog Incident database Request access

Loading database

Indexing incidents

Fetching SEC-disclosed cyber incidents and Duke's breach taxonomy…

Duke

Blog Incident database Request access

Opening incident

Loading disclosure

Pulling the filing, breach taxonomy, and impact scoring…

Global Crossing Airlines Group Inc. Unknown (2025) | SEC Cybersecurity Incident | Duke Security

Duke

Blog Incident database Request access

← Back to incidents

Incident · Unknown

Global Crossing Airlines Group Inc. · JETMF

IndustrialsUSAIncident May 5, 2025Filed May 9, 2025

Impact score

Business continuity

—

Insurance involved

Not disclosed

Filing

8-K · 8.01

Breach taxonomy

UnknownMalwareProduct ServiceNetwork Security

Summary

On May 5, 2025, Global Crossing Airlines Group identified unauthorized activity within its computer networks and systems supporting portions of business applications, determined to be a cybersecurity incident. The company activated incident response protocols, engaged third-party cybersecurity experts, isolated affected servers, and notified law enforcement. Operations were not disrupted and the company did not expect material impact. Filed under Item 8.01; materiality not yet determined as of filing date.

Tagging rationale

ThreatUnknown

Filing does not attribute the incident to a specific actor -> UNKNOWN.

MethodsMalware

Filing describes 'unauthorized activity within its computer networks and systems' requiring containment and server isolation; no specific method confirmed -> MALWARE (general).

AssetsProduct Service

Unauthorized activity affected business application systems supporting airline operations; flights were unaffected -> PRODUCT-SERVICE.

EffectsNetwork Security

No operational disruption; only confirmed impact is the security compromise of network/systems -> NETWORK-SECURITY.

Impact

No operational disruption, no data exposure confirmed, no material impact expected, small regional airline -> score 1.

InsuranceNot disclosed

Filing makes no mention of insurance -> null.

Read the original SEC filing excerpt

Item 8.01 Other Events Discovery of and Response to Cybersecurity Incident On May 5, 2025, Global Crossing Airlines Group Inc. learned of unauthorized activity within its computer networks and systems supporting portions of its business applications, which the Company determined to be the result of a cybersecurity incident. Upon learning of this activity, the Company immediately (1) activated its incident response protocols and third-party cybersecurity experts to assist with containment and mitigation activities and to investigate the nature and scope of the incident and (2) took actions to contain and isolate the affected servers and prevent further intrusion. The Company also promptly notified law enforcement and is coordinating fully with them. Given the recency of the incident, our investigation and response are ongoing, and the full scope, nature, and potential ultimate impact on the Company are not yet known. The Company currently believes that none of its operations have been disrupted or negatively impacted by this incident. Although the Company is unable to predict the full impact of this incident, the Company does not expect the incident will have a material effect on the Company, or its financial condition or results of operations.

View SEC filing Back to database

Get alerts on new incidents

Drop your email and we’ll let you know when fresh SEC disclosures land in the database. No spam.

More in Industrials

Unknown · April 20, 2026

ADT Inc.

ADT became aware on April 20, 2026 of unauthorized access to certain cloud-based environments. The company terminated the access, activated …

Unknown · March 11, 2026

Trio-Tech International, Inc.

On March 11, 2026, a Singapore-based subsidiary of Trio-Tech International experienced a ransomware attack that encrypted files on the compa…

Unknown · February 14, 2026

UFP Technologies, Inc.

On or about February 14, 2026, UFP Technologies detected unauthorized access to its IT systems, affecting billing and label-making functions…

Unknown · September 19, 2025

RTX Corporation

On September 19, 2025, RTX Corporation identified a ransomware incident on systems supporting its Multi-User System Environment (MUSE) passe…