Ransomware, Critical Infrastructure Security

Tulsa International Airport purportedly compromised by Qilin

Oklahoma's Tulsa International Airport was claimed to have been breached by the Qilin ransomware gang, which exposed over a dozen files purportedly stolen from its internal network systems, according to Cybernews.

Analysis of the 18 data samples leaked by Qilin revealed documents from 2022 to 2025, including emails with the contact details of Tulsa International Airport's chief financial officer, as well as the executive's correspondence with high-level banking officials, and multiple employee ID copies, said Cybernews researchers. Qilin also revealed confidentiality and non-disclosure agreements, yearly budget and revenue spreadsheets, insurance files, telehealth reports, tenant databases, governance minutes, court case files, and vendor revenue sheets.

While Tulsa International Airport has yet to acknowledge Qilin's alleged hack, such an incident comes amid growing cybersecurity threats against the aviation sector. Meanwhile, Qilin, which was the most active ransomware gang last year, is set to continue its streak this year, with its claimed attacks against more than 50 organizations last month, findings from Cybernews' Ransomlooker tool showed.

An In-Depth Guide to Ransomware

Get essential knowledge and practical strategies to protect your organization from ransomware attacks.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds