Tribhuvan International Airport

Tribhuvan International Airport, known locally as त्रिभुवन अन्तर्राष्ट्रिय विमानस्थल, serves as Nepal's primary international aviation gateway and a critical national infrastructure hub. Its core operations encompass the management of international passenger and cargo traffic, including essential services such as immigration clearance, customs processing, and security screening for all arriving and departing flights. As the country's main point of connection to global air networks, the airport facilitates vital trade, tourism, and diplomatic travel, handling a significant portion of Nepal's international air transport. The airport's functionality is deeply integrated with national government systems, relying on centralized data centres for real-time verification of passenger documentation, including visas, passports, and Interpol database checks. This integration underscores its role not merely as a transport facility but as a key node in the nation's border security and administrative framework, where operational continuity is directly tied to the stability of overarching government IT infrastructure.

The airport's operational resilience was severely tested on 27 January 2023 when a distributed denial-of-service (DDoS) cyberattack targeted Nepal's Government Integrated Data Centre. This attack crippled over 400 government websites and critical systems, directly disrupting the digital services upon which the airport's immigration and security processes depend. The server overload forced immigration authorities to abandon automated systems, reverting to manual processing for visas and passports. This fallback mechanism caused extensive passenger queues and significant delays for international flights, illustrating a direct causal link between a national cyber incident and localized aviation chaos. While the attack did not result in data compromise, the National Information Technology Centre's mitigation required isolating servers from foreign access, a measure that highlighted systemic vulnerabilities in the integrated data infrastructure supporting the airport. The incident exposed a single point of failure where a national cyber event could precipitate operational paralysis at a critical international transport hub, raising profound concerns about the security of similar dependencies across government services and the potential for future disruptions with more malicious intent.