Cause of BA website hack found

A cyber security firm claims to have discovered a malicious script injected into the British Airways website, which could be the cause of the data hack that affected 380,000 customer transactions.

BA said it was unable to comment on a BBC report that said a RiskIQ researcher analysed code from the airline’s website and app around the time when the breach began, in late August.

He is said to have found evidence of a “skimming” script designed to steal financial data from online payment forms.

A very similar attack, dubbed Magecart, affected the Ticketmaster website recently, which RiskIQ said it also analysed in depth.
The company said the code found on the BA site was very similar, but appeared to have been modified to suit the way the airline’s site had been designed.

Link to article

Bribery scandal: British Airways employee accused of…
Cyber security experts warn Booking.com users of ‘scam’
Action Fraud urge holiday makers to watch out for…
Advantage members to receive free access to fraud…
Insurance fraud clampdown coincides with October…
Warnings issued as £12.3m lost to holiday scams in 2023
Updates made to industry’s intelligence database of…
Travel agent jailed for defrauding customers to fund…
Hajj Fraud

Related Posts: