South African Airways (SAA), the country’s national airline, has confirmed that it was hit by a major cyberattack during the weekend of May 3, 2025. The attack caused serious disruption to the airline’s digital operations, including its official website and other internal systems. This made it hard for customers to access flight schedules, bookings, and other important information online.

In a statement released on Monday, May 6, SAA described the incident as a “significant cyberattack.” The Acting Chief Executive Officer of the airline, Mr. Tebogo Tsimane, said their IT department had been working non-stop with external cybersecurity experts to contain the situation. He said the airline also informed the South African State Security Agency and other authorities about the breach, and investigations were already ongoing.

Mr. Tsimane said the airline regrets the difficulties passengers have faced and promised that SAA is working hard to bring things back to normal. He explained that even though the attack affected some digital services, flight operations were still running. Planes continued to fly, and passengers were being assisted at the airports. He assured the public that the safety of passengers and protection of their personal data is a top priority.

So far, SAA has not named the attackers or confirmed the method used. But some cybersecurity experts believe it may have been a ransomware attack or an organised cyber breach aimed at public-facing platforms. The airline said it had not seen any signs that passenger data had been stolen, but they are still monitoring the situation. They promised to update the public if any new information comes up.

This incident has raised fresh concerns about cybersecurity in the aviation sector, especially in Africa. In recent years, big airlines like British Airways and Aer Lingus have also suffered cyberattacks that disrupted operations. Industry experts are warning that African airlines and governments need to take cybersecurity more seriously to protect sensitive systems.

Many analysts believe this attack is a strong reminder to both public and private companies to upgrade their digital security. With most customer services now done online, including ticket booking, payments, and flight updates, a cyberattack can affect thousands of people and lead to big financial losses. There is also the risk of losing public trust if personal information is leaked.

The South African Department of Transport said it is supporting SAA and will help assess the full impact of the attack. The government is also looking at improving its national cybersecurity plan to reduce future threats like this.

At the moment, there is no clear timeline for when all SAA systems will be fully restored. The airline has advised travellers to use alternative channels to get flight information and to stay patient while repairs continue.

The situation remains under close watch by both the airline and the authorities. Cybersecurity teams are still working hard to secure the systems and make sure operations return to normal without further problems.