Breach taxonomy
Summary
On September 19, 2025, RTX Corporation identified a ransomware incident on systems supporting its Multi-User System Environment (MUSE) passenger processing software, which enables multiple airlines to share check-in and gate resources at airports including baggage handling. The MUSE systems reside on customer-specific networks outside the RTX enterprise network. Airlines and airports shifted to backup or manual processes and experienced certain flight delays and cancellations. RTX engaged internal/external cybersecurity experts and notified domestic and international law enforcement and government agencies. The incident was not expected to have a material financial impact. Filed under Item 8.01; materiality not yet formally determined as of filing date.
Tagging rationale
ThreatUnknown
Filing does not attribute the ransomware incident to a specific actor category -> UNKNOWN.
MethodsRansomware
Filing explicitly states 'ransomware on systems that support its Multi-User System Environment (MUSE) passenger processing software' -> RANSOMWARE.