Global Crossing Airlines, better known as GlobalX, has confirmed that it was the target of a cyberattack earlier this month. The Miami-based carrier, which operates charter and deportation flights on behalf of U.S. immigration authorities, disclosed the breach in a filing submitted to the Securities and Exchange Commission on May 9.
Cyber breach reported but flights continue
The incident took place on May 5 and involved unauthorized access to systems used in part of the airline’s operations. According to the company, flight activity was not disrupted. While some internal applications were affected, GlobalX said the breach is not expected to impact its financial results.
The airline has brought in cybersecurity specialists to assess the breach and is cooperating with law enforcement. At this stage, no additional technical details have been made public.
Hackers claim motive tied to deportation flights
Following the breach, a group claiming affiliation with Anonymous said it was responsible for the attack. In statements shared online, the group said it targeted GlobalX because of its involvement in deportation operations run by U.S. Immigration and Customs Enforcement (ICE).
The hackers allege they accessed internal records, including flight data and passenger lists linked to ICE charter operations. While this claim has not been officially verified, at least some of the data appears to correspond with known flight schedules and government records.
The company’s website was briefly defaced during the attack but has since been restored. GlobalX did not comment on the reported motive or the specifics of what data may have been taken.
A small carrier with growing government ties
Founded in 2018, GlobalX has quickly grown into a notable player in the U.S. charter market. In 2023, the company reported revenues of $160 million — with roughly $65 million tied to ICE-related contracts. It also operates cargo and passenger flights across the Americas and Europe.
The company’s work for federal agencies, particularly on deportation missions, has drawn criticism from human rights groups and immigration advocates. This latest breach adds another layer of scrutiny, especially around how contractors protect sensitive operational data.
Security questions surrounding federal contracts
The attack on GlobalX highlights a broader issue facing companies that handle sensitive government transportation contracts. While most attention around cybersecurity has focused on large commercial airlines or federal databases, private carriers like GlobalX are increasingly in the spotlight.
With charter flights moving vulnerable individuals, including asylum seekers and detainees, any compromise of flight data or manifests raises concerns not just about privacy, but also about safety and legal exposure.
GlobalX has said it is reviewing its systems and policies in the wake of the incident. As of now, flights continue, and no delays or cancellations related to the breach have been reported.
What happens next?
Investigations are ongoing. The FBI and Department of Homeland Security declined to comment. It remains unclear if criminal charges will follow or if the attackers gained access to government communications in the process.
For now, the airline faces both technical cleanup and reputational fallout — especially as attention turns to how private companies handle the operational details of sensitive federal missions.