British Airways confirms massive data breach
The cyber-attack has reportedly left hundreds of thousands bank cards compromised.Europost , London
The largest airline in the UK British Airways admitted that hackers have stolen customers’ personal and payment card information from its website, ba.com. Although it did not disclose much about the breach, the BA said that the “personal and financial details” of customers who made bookings on its site or app between 21 August and 5 September were compromised, but travel or passport information was not taken.
Later on, spokespeople of the company appear to have confirmed to the media that some 380,000 card payments were among the compromised in the cyber hack of its website.
“The breach has been resolved and our website is working normally,” the company however assured in a statement. “British Airways is communicating with affected customers and we advise any customers who believe they may have been affected by this incident to contact their banks or credit card providers and follow their recommended advice.”
Under the new European GDPR data protections laws, the airline can face fines of up to four percent of its global annual revenue.
The London-based airline joins the ranks of other airlines that have admitted data breaches in recent weeks and months. More recently Air Canada has confirmed such a breach on its mobile app, which the airline said may affect 20,000 people - or 1 percent - of its 1.7m app users. In an email to customers, the company stated that attackers may have accessed basic profile data, including names, email addresses and phone numbers - but also more sensitive data that users may have added to their profiles, including passport numbers and expiry date, passport country of issuance, NEXUS numbers for trusted travelers, gender, dates of birth, nationality and country of residence. Credit card data was not accessed this time.
Delta also said earlier this year that customer data was stolen after a security lapse at one of its third-party customer support service vendors.