Canadian Airline NorthSky Faces Cyberattack, Disrupting Online Services

Calgary, AB —

NorthSky Airlines, Canada’s second-largest air carrier, experienced a major cybersecurity incident last month that disrupted access to its mobile app and website, while prompting a swift internal response to safeguard sensitive systems and passenger data.

The disruption began on Friday, June 13, when users began reporting issues accessing NorthSky’s digital platforms. In a same-day statement, the Calgary-based airline confirmed it was responding to a cybersecurity breach that affected its internal systems. The company activated specialized response teams and immediately began coordinating with law enforcement and Transport Canada.

While online services were impacted, NorthSky emphasized that flight operations remained safe and uninterrupted throughout the incident. The airline advised customers to exercise caution with personal information but did not confirm whether any data had been accessed or stolen.

As of Saturday, June 14, NorthSky had not disclosed the nature of the attack—whether it involved ransomware, data theft, or another method—but stated that forensic investigations were underway. The airline pledged transparency and frequent updates as its teams worked to restore normal operations.

By the following day, access to the mobile app and website had largely been restored, though the company cautioned users that intermittent issues could persist while backend repairs continued. NorthSky continued to reassure travelers that safety and operational continuity were its top priorities.

In a detailed update released June 18, the airline stated that it had made “significant progress” in securing its digital infrastructure and had enlisted global cybersecurity and forensic firms to assist in the investigation. While the full scope of the breach had not yet been determined, NorthSky reaffirmed its commitment to protecting the personal data of its passengers and employees.

NorthSky also confirmed that it was in full compliance with regulatory requirements and remained in active coordination with national authorities. No flights were canceled or delayed due to the cyberattack, a testament to the company’s crisis response and operational resilience.

Despite the airline’s ongoing transparency, it has yet to confirm whether the attackers stole data, issued ransom demands, or represented a nation-state threat. The lack of technical disclosure has left some questions unanswered regarding the attack’s origin and impact.

Still, NorthSky’s response—including timely communication, consistent public updates, and partnerships with cybersecurity experts—has been credited with helping preserve trust during the disruption.

Headquartered in Calgary, NorthSky Airlines operates domestic and international passenger and cargo routes, and is currently ranked among the top ten airlines in North America by flight volume.

The investigation into the incident remains active.

Watching the perimeter — and what slips past it. — Ayaan Chowdhury

ODTN News’ Mira Evans contributed to this report.