Cyber Incident Victim: Beirut Rafic Hariri International Airport
Date:
Jan 2024
Location:
Lebanon
Summary
A cyberattack targeted Beirut International Airport, compromising its Flight Information Display System to display a political message accusing Hezbollah and Iran of escalating regional conflict and warning of potential airport bombings due to arms smuggling. The incident additionally disrupted baggage inspection systems, forcing personnel to manually screen luggage using police dogs. The breach occurred amid heightened tensions between Israel and Lebanon, though no group claimed responsibility for the intrusion.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 7, 2024, Beirut International Airport Rafic Hariri experienced a cyberattack that compromised its Flight Information Display System (FIDS). Threat actors manipulated the system to display a political message on airport screens, alleging that Hezbollah and Iran were leading Lebanon toward war against the public’s will. The message further warned that arms smuggling activities would result in the airport being bombed. The breach disrupted standard flight information dissemination, though the article does not specify whether flight operations or passenger boarding processes were directly affected. The airport, located 9 kilometers from Beirut’s city center, serves as Lebanon’s primary international air travel hub, amplifying the operational and symbolic significance of the incident. No technical details regarding the attack vector, such as malware use or initial access methods, were disclosed in the source material.

The attack additionally disabled the airport’s Baggage Handling System (BHS), halting automated baggage inspection procedures. Personnel resorted to manual inspections using police dogs to screen luggage, indicating a significant degradation of normal security and logistical workflows. Lebanese media outlet LBCI reported the disruption, though the duration of the outage and the full scope of baggage processing delays remain unspecified. No entity claimed responsibility for the intrusion at the time of reporting. The article contextualizes the incident against escalating regional tensions between Israel and Lebanon but provides no direct evidence linking the attack to state or non-state actors. Airport authorities and Lebanese government agencies did not release public statements detailing containment measures, system restoration timelines, or investigations within the article’s coverage period.
