← Back to incidents

Incident · Unknown

Global Crossing Airlines Group Inc. · JETMF

IndustrialsUSAIncident May 5, 2025Filed May 9, 2025
Impact score
Business continuity
Insurance involved
Not disclosed
Filing
8-K · 8.01

Breach taxonomy

UnknownMalwareProduct ServiceNetwork Security

Summary

On May 5, 2025, Global Crossing Airlines Group identified unauthorized activity within its computer networks and systems supporting portions of business applications, determined to be a cybersecurity incident. The company activated incident response protocols, engaged third-party cybersecurity experts, isolated affected servers, and notified law enforcement. Operations were not disrupted and the company did not expect material impact. Filed under Item 8.01; materiality not yet determined as of filing date.

Tagging rationale

ThreatUnknown

Filing does not attribute the incident to a specific actor -> UNKNOWN.

MethodsMalware

Filing describes 'unauthorized activity within its computer networks and systems' requiring containment and server isolation; no specific method confirmed -> MALWARE (general).

AssetsProduct Service

Unauthorized activity affected business application systems supporting airline operations; flights were unaffected -> PRODUCT-SERVICE.

EffectsNetwork Security

No operational disruption; only confirmed impact is the security compromise of network/systems -> NETWORK-SECURITY.

Impact

No operational disruption, no data exposure confirmed, no material impact expected, small regional airline -> score 1.

InsuranceNot disclosed

Filing makes no mention of insurance -> null.

Read the original SEC filing excerpt
Item 8.01 Other Events Discovery of and Response to Cybersecurity Incident On May 5, 2025, Global Crossing Airlines Group Inc. learned of unauthorized activity within its computer networks and systems supporting portions of its business applications, which the Company determined to be the result of a cybersecurity incident. Upon learning of this activity, the Company immediately (1) activated its incident response protocols and third-party cybersecurity experts to assist with containment and mitigation activities and to investigate the nature and scope of the incident and (2) took actions to contain and isolate the affected servers and prevent further intrusion. The Company also promptly notified law enforcement and is coordinating fully with them. Given the recency of the incident, our investigation and response are ongoing, and the full scope, nature, and potential ultimate impact on the Company are not yet known. The Company currently believes that none of its operations have been disrupted or negatively impacted by this incident. Although the Company is unable to predict the full impact of this incident, the Company does not expect the incident will have a material effect on the Company, or its financial condition or results of operations.
View SEC filingBack to database

More in Industrials

Unknown · March 11, 2026

Trio-Tech International, Inc.

On March 11, 2026, a Singapore-based subsidiary of Trio-Tech International experienced a ransomware attack that encrypted files on the compa

Unknown · February 14, 2026

UFP Technologies, Inc.

On or about February 14, 2026, UFP Technologies detected unauthorized access to its IT systems, affecting billing and label-making functions

Unknown · September 19, 2025

RTX Corporation

On September 19, 2025, RTX Corporation identified a ransomware incident on systems supporting its Multi-User System Environment (MUSE) passe

Unknown · June 23, 2025

Alaska Air Group, Inc.

On June 23, 2025, Hawaiian Airlines, a subsidiary of Alaska Air Group, Inc., identified a cybersecurity incident affecting certain informati