Cyber Incident Victim: Air Mauritius

On February 14, 2022, Air Mauritius experienced a cyberattack that disrupted its IT network for approximately 24 hours, beginning on Monday morning and lasting until midday Tuesday. The initial cyber threats emerged on the airline’s servers early Monday, prompting immediate operational challenges as critical systems became inaccessible, including the official Air Mauritius website. This forced staff to abandon digital processes and revert entirely to manual operations across multiple departments. Primary impacts centered on ticketing verification, flight load management, and crew scheduling systems, which required handwritten documentation and physical record-keeping. The prolonged outage necessitated the use of alternative networks to maintain partial functionality while technicians addressed the breach. Unconfirmed reports indicated that Air Mauritius executed a full shutdown and restart of affected servers to contain the incident.

The transition to manual operations significantly slowed administrative workflows, with employees comparing the experience to reverting to pre-digital-era practices from 1968. Ground staff handled passenger check-ins and baggage processing without automated systems, while flight crews relied on printed schedules disseminated physically. Despite these measures, the airline sustained operational delays and reduced efficiency throughout the disruption period. Recovery efforts progressed gradually, with systems returning to normal functionality by Tuesday afternoon. No data theft or financial demands were mentioned in initial reports, with the focus remaining on restoring core operational capabilities. The incident concluded without disclosed details regarding attack vectors or perpetrator identification.