Cyber attack disrupts operational systems at South African Airways

South African Airways (SAA) has experienced a significant cyber incident that began on Saturday, May 3rd, 2025, temporarily disrupting access to the airline's website, mobile application, and several internal operational systems. 

After detecting the incident the airline activated its disaster management and business continuity protocols to contain and minimize the disruption to flight operations. Essential customer service channels, such as the airline's contact centers and sales offices remained operational. Normal system functionality across all affected platforms was restored later the same day.

SAA management initiated an investigation by independent digital forensic investigators to determine the root cause and full scope of the incident. 

No details are disclosed about the nature of the attack, any exposed data or number of affected individuals.

South African Airways has committed to notifying any affected parties directly, in accordance with regulatory requirements, should the investigation confirm a data breach. In the meantime SAA has reported the incident to the State Security Agency, notified the South African Police Service and the Information Regulator of South Africa as a precautionary measure.