Hawaiian Airlines is the latest carrier to confirm a cybersecurity incident, which was reported just this morning. The incident was discovered when a sudden message appeared unexpectedly while checking flights on both Hawaiian Airlines’ and Alaska Airlines’ homepages. While the message was not readable on our mobile device, it was on our desktop.
The alert above revealed that an “event” had impacted their IT systems. While flights are reported to still be operating on schedule and booking appears unaffected, the airline has released few specifics, fueling speculation about how severe the disruption was and whether any passenger data may have been compromised.
The timing raises questions.
This comes at a particularly sensitive moment for Hawaiian Airlines. The carrier is navigating a complex interaction process with its new owner, Alaska Airlines, an aggressive wide-body fleet reshuffle, and one of the most dynamic and fascinating periods in Hawaii air travel. A cybersecurity failure, even if quickly contained, adds to the perception that things aren’t running entirely smoothly behind the scenes.
The airline’s message, posted quietly and without a formal press release that we’ve seen, reads more like a placeholder than a full explanation: “Hawaiian Airlines is addressing a cybersecurity event that has affected some of our IT systems… We are currently working towards an orderly restoration.” That sort of language typically points to either ransomware or a significant data breach, mainly when it includes mention of engaging “authorities and experts.”
What systems might be affected.
Hawaiian hasn’t specified which systems were affected, but “IT systems” typically encompass more than just internal email or HR tools. The most concerning possibilities for travelers include reservations, payment processing, flight dispatch, and passenger check-in tools. We’ve seen in past airline industry cyberattacks that these events can ripple into other problems.
At the time of publication, Hawaiian’s website, as well as Alaska’s, still allowed flight searches and bookings to proceed normally as far as we could tell. That’s a positive sign, but without clarity on which systems were impacted, travelers are still left guessing. Whether personal data or back-end reservation infrastructure was compromised remains unknown.
Suppose your reservation was recently made or changed through Hawaiian’s website, mobile app, or call center. In that case, it’s worth keeping an eye on this event and perhaps logging in to verify that everything is still in order. Again, there’s no current suggestion of anything more serious at this time.
Why this matters beyond Hawaiian.
Airlines are increasingly in the crosshairs of cybercriminals. The amount of sensitive personal data they hold—passports, credit cards, TSA credentials, and contact information—combined with their global operations and largely outdated legacy technology infrastructure, makes them especially vulnerable. And while this isn’t the first airline breach, it’s one of the most visible incidents to hit Hawaii’s air network in recent times.
What Hawaiian and Alaska said—and didn’t.
So far, here’s the complete statement released across both Hawaiian’s and Alaska’s homepages:
“Hawaiian Airlines is addressing a cybersecurity event that has affected some of our IT systems. The safety and security of our guests and employees is our highest priority. We have taken steps to safeguard our operations, and our flights are operating safely and as scheduled. Upon learning of this incident, we engaged the appropriate authorities and experts to assist in our investigation and remediation efforts. We are currently working towards an orderly restoration and will provide updates as more information is available.”
No mention was made of which systems were impacted, how long the issue had been ongoing, whether any personal data had been compromised, how guests should follow up, or if follow-up was even necessary. That omission is most striking.
While airlines are not legally required to disclose everything upfront, especially early in an investigation, the vagueness here is unlikely to reassure affected travelers, including BOH editors who, together, are holding nearly two dozen Hawaiian and Alaska reservations.
What to do if you’re flying Hawaiian.
If you have an upcoming trip with Hawaiian Airlines, as we do, the best course of action is to check your flight status, verify your reservation in both email and the mobile app (if available), and consider taking screenshots of your itinerary. Hawaiian’s and Alaska’s call centers are likely to be overwhelmed or operating at reduced capability, so patience may be required if you need support.
Read: Hawaiian Or Alaska? One Airline Surprised Us On Service.
If you used your HawaiianMiles account or changed a reservation recently, it’s a good idea to check for anything unusual. As indicated, the airlines’ advisory has remained unchanged since it was first posted.
Hawaii flights continue unaffected.
For now, flights are operating, and no major disruptions have been reported. But given the opaque nature of the airline’s disclosure, we’ll be watching closely for any changes to that status. If you’ve had a different experience or noticed unusual behavior in your Hawaiian account, let us know in the comments. As we’ve seen time and again, traveler feedback often reveals what airline official statements won’t.
We’ll update this post as soon as Hawaiian or Alaska provides more details, either way. Hopefully, this quiet cyber “event” does not turn into something bigger.
Get Breaking Hawaii Travel News
