One of those security concerns forced a Delta Airlines flight from Los Angeles to Orlando to land at DFW International Airport on Sunday to check for explosives.
One particular tweet was sent out from the Twitter handle @AllahuAhkbar911, which is now a suspended account, to various groups including @FoxNews and @DeltaAssist. One of the tweets stated in all caps: "@FOXNEWS WE HAVE PLANTED EXPLOSIVES ON DELTA FLIGHT #1061 FROM LA TO ORLANDO, WE ARE ISIS, WE ARE HERE, YOU WONT BE."
Bomb squads searched the plane with K-9 dogs, and officials with Delta said they found no threat on board.
Two other planes were evacuated in Seattle Sunday due to security concerns, and two flights to Atlanta were escorted by fighter jets on Saturday after someone posted bomb hoaxes on social media.
None of the threats turned out to be real, but such threats force airlines to have to scramble to respond. They also cost money that's passed on to the public, they waste time and put law enforcement on edge.
Security experts say there's one way to tell if threats are fake.
"ISIS doesn't make those types of idle threats," said security consultant Danny Defenbaugh.
The group often uses extortion, but also inspires copycats.
"On this kind of case, I think that especially with this many of them that are occurring, you are always going to have those mimics or those mimes…those apers who want to get in on the action," said Defenbaugh.
Despite that, experts say that safety demands a response.
"ISIS only has to be right once," said Defenbaugh. "You have to react to the safety of those passengers and of the public."
And in a world where a tweet can bring a plane to the ground, regardless of whether the threat is credible, there's at least one way to stop it.
"It's one of the best ways because you've taken and applied the rule of law to those type of crimes," said Defenbaugh.
The FBI is working on finding out the party or parties responsible, so there are no suspects made public right now, and it's unknown if the five incidents are connected.
The Twitter accounts used for some of the hoax threats were de-activated shortly after the incidents.