British Airways breach caused by the same hackers as Ticketmaster
, , ,

British Airways data breach caused by the same hackers as Ticketmaster

According to reports, a cyber-criminal operation known as Magecart is behind the recent British Airways data breach. The group has been very active in the past three years. It is also thought to be behind the Ticketmaster data hack.

Earlier this year we reported that cybersecurity analysts RiskIQ believed that the Ticketmaster data theft was part of a larger credit card scheme.

A new report by RisqIQ states that there are clues linking the same operation to the British Airways breach. The company said the code found on the British Airways site was very similar. However, the code was modified to suit the way the airline’s website had been designed.

“The infrastructure used in this attack was set up with British Airways in mind and purposely targeted scripts that would blend in with normal payment processing to avoid detection.”

Crucially, if RiskIQ, is right about how the attack worked, a cybersecurity researcher has told the BBC that “BA should have been able to see this”.

If the British Airways data breach was carried out by the same group, the threat to consumers could be much worse than thought. RisqIQ has said that it looked like the group behind the attack had decided to target specific brands, and that more breaches of a similar nature were likely.

What should you do about the British Airways data breach?

Regardless of who was behind the attack, British Airways was responsible for keeping your data safe, and this is something it has failed to do.

The British Airways data breach has compromised payment details and personal data. This information that can be used by cybercriminals to steal money from you, apply for credit in your name, set up fraudulent bank accounts and more.

So, if you have suffered damage or distress caused by this hack, you have a right to claim compensation. British Airways has said that it has informed those involved, so if you have received this email let us know.

Data breaches often have severe consequences for those affected so you could be entitled to around £5,000 in compensation.

With data breaches on the rise, something has to be done to make big companies accountable for data losses, so claiming compensation isn’t just in your best interests, it could be the only way to ensure that businesses everywhere implement more secure processes.

To join our British Airways data breach group action compensation claim, you will need you to register with us. We’ll let you know what is happening in this case and if and when you can make a data breach compensation claim.

REGISTER NOW

British Airways data breach responsibility
, ,

British Airways accused of not taking responsibility for data breach

Last week it was revealed that almost 400,000 British Airways customers had their bank card details stolen in one of the most severe cyber-attacks in UK history. However, the company’s statement on how it would be awarding compensation for the British Airways data breach has been accused of being “unprofessional” by some customers.

Following the British Airways data breach, the personal and financial details of 380,000 customers were put at risk. In response, British Airways said that compensation claims would be discussed on an ‘individual basis’. However, it is not up to the airline to dictate the terms of any compensation payments.

In response, customers have spoken to the media and taken to social media to share their fury at the airline’s handling of a data breach.

According to an article in The Metro, one BA customer said “They talk about compensation to be discussed on a case-by-case basis. To me, this seems incredibly unprofessional.”

He added: “They are trying to not take full responsibility for it”.

The same customer is reported to have suffered fraudulent activity on his credit card, which he used to book a British Airways flight during the time the data was at risk.

Other customers have complained that they have not been contacted by British Airways about the data breach, despite having seen fraudulent activity on their payment cards.

Should you accept compensation from British Airways?

At Hayes Connor Solicitors, we are experts in data breach cases. As such we are preparing to launch a British Airways Data Breach Group Action once the relevant investigations are complete.

A group action is undoubtedly the best way forward for data breach claims of this nature. It allows people with the same type of claim in principle to bring it together on a collective basis. This strengthens their overall position and increases their chances of settlement or success in litigation. And, because we offer no-win, no-fee funding arrangements, you have nothing to lose.

Also, in such cases, it’s not uncommon that we uncover information that allows us to increase the value of your claim significantly. What might seem irrelevant to you, could make a huge difference in the eyes of the law.

Data breaches often have severe consequences for those affected so you could be entitled to up to £5,000 in compensation. That’s why it’s important not to be fobbed off by a low initial offer from British Airways. Instead, by making a no-win, no-fee claim with us, we can increase the amount of compensation you receive substantially.

Crucially, it doesn’t matter if you haven’t lost out financially as a result of the hack. If the data breach has caused you stress or anxiety, then the law agrees that you are entitled to compensation.

To join our British Airways data breach group action compensation claim, you will need you to register with us. We’ll let you know what is happening in this case and if and when you can make a data breach compensation claim.

REGISTER NOW

 

data hack
, ,

Should you accept data breach compensation from British Airways?

Over the last few days, it has been revealed that almost 400,000 British Airways customers have had their credit/bank card details stolen. The “sophisticated, malicious criminal attack” is thought to be one of the most serious cyber-attacks in UK history.

In response, British Airways has contacted those customers affected and has said that it will be discussing data breach compensation claims on an ‘individual basis’. However, it is not up to British Airways to dictate the terms of any compensation payments.

Instead, at Hayes Connor Solicitors we would ask anyone affected by the breach to consider the following if they want to achieve the maximum data breach compensation possible following the British Airways data hack.

  1. It appears that British Airways has made this data breach worse than it needed to be

While the British Airways data hack started over two weeks ago, it took the airline until Wednesday night to alert its customers. We believe that this is a severe failure by British Airways.

British Airways has admitted that the hackers spent more than two weeks accessing data online. This increases the risk to passengers substantially. There are also fears that customers’ details will be sold on the dark web to cybercriminals. So, in addition to any failure in its IT systems (failures that allowed the hackers to gain access to your data), we also believe this delay in reporting should be considered in any compensation claim.

  1. You deserve compensation even if you haven’t lost money

Along with the financial info stolen, the hackers also gained access to personally identifiable information (PII). PII includes any data that can be used to identify a specific individual.

If this data gets into the wrong hands, it can be used to undertake identity fraud. For example, with enough information, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts.

We want to make sure that anyone affected by the data breach understands that they can claim compensation for a failure to look after their data – and how much they could be entitled to – even if they haven’t suffered financially.

  1. British Airways might try to fob you off with a low offer

At Hayes Connor Solicitors, we are experts in data breach cases. And, once you have registered with us, it’s not uncommon that we uncover information that allows us to increase the value of your claim significantly. What might seem irrelevant to you, could make a huge difference in the eyes of the law.

That’s why it’s important not to be fobbed off by a low initial offer from British Airways. Instead, by making a no-win, no-fee claim with us, we can increase the amount of compensation you receive substantially.

Find out more about the benefits of using an expert data protection lawyer.

  1. You can claim compensation for distress

It doesn’t matter if you haven’t lost out financially as a result of the British Airways data hack. A personal data breach is a 21st-century version of being burgled and being the victim of a crime can have a significant impact on you mentally and physically.

According to Victim Support: “The effects of crime can also last for a long time, and it doesn’t depend on how ‘serious’ the crime was. Some people cope really well with the most horrific crimes while others can be very distressed by a more minor incident”.

When making a compensation award, the court will look at the specific circumstances of your case. This includes things like the sensitivity of the data compromised and the nature of the disclosure.

A personal data breach is a 21st-century version of being burgled. If a criminal came into your home and stole your private information and bank details you would be distressed. So why should you feel any less upset at having your online data taken; particularly when British Airways may have given the burglar the keys?

If the British Airways data breach has caused you stress or anxiety, then the law agrees that you are entitled to compensation. And, at Hayes Conner Solicitors, we know exactly how much compensation you could get.

  1. A group action could strengthen your chances of success

Where lots of people have been affected in a similar way, group actions can be a powerful tool and can have a bigger impact than a single claim.

Find out more about making a group action claim.

We have already been contacted by many British Airway customers who are worried that their personal and financial data was not looked after as carefully as it should have been.

Committed to helping victims of data breaches and cybercrime to achieve the justice they deserve, at Hayes Connor Solicitors we are now considering launching a group action to compensate victims of the British Airways data breach.

To join this group action, you will need you to register with us. We’ll let you know what is happening in this case and if and when you can make a data breach compensation claim.

Data breaches often have severe consequences for those affected so you could be entitled to up to £5,000 in compensation.

REGISTER NOW

cybercrime
, , ,

BA customers victims of huge data breach with cybercriminals stealing bank card details

Almost 400,000 British Airways customers have had their bank card details stolen in what is reported to be one of the most severe cyber-attacks in UK history.

Worryingly, while the huge data breach started over two weeks ago, it was only detected by the airline on Wednesday night. At that time BA told its customers about the breach and reported the incident to the police.

However, with 12 days between the BA data breach occurring and the incident being detected, questions are now being asked as to whether poor systems have made this cyber-attack worse.

All 380,000 customers who booked flights online or via the BA app during that time using a debit or credit card are affected.

Committed to helping victims of data breaches and cybercrime to achieve the justice they deserve, at Hayes Connor Solicitors we are now considering launching a group action to compensate victims of the BA data breach.

What happened in the BA data breach?

Hackers carried out a “sophisticated, malicious criminal attack” on the BA website. BA has confirmed that the personal and financial details of customers making bookings had been compromised. In total, about 380,000 transactions were affected.

Along with the financial info stolen, it appears that the hackers also gained access to personally identifiable information (PII). PII includes any data that can be used to identify a specific individual, and, if it gets into the wrong hands, it can be used to undertake identity fraud. For example, with enough information, cybercriminals can apply for credit in your name, set up fraudulent bank accounts and access your existing accounts.

Signs that criminals have used your data or financial information following the BA data breach include:

  • Bills or emails showing goods or services you haven’t ordered
  • Unfamiliar transactions from your account
  • An unexpected dip in your credit score
  • Unsolicited communications that ask for your personal data or refer you to a web page asking for personal data.

If you have been affected by this BA data breach, please contact your bank or credit card provider immediately.

BA has admitted that the hackers spent more than two weeks accessing data online. This increases the risk to passengers substantially. There are also fears that customers’ details will be sold on the dark web to cybercriminals.

What has BA done about the data breach?

BA has notified the police and relevant authorities. The National Crime Agency has also been brought in to investigate this case.

The airline has also issued an email to affected customers stating that:

“From 22:58 BST 21 August 2018 until 21:45 BST 5 September 2018 inclusive, the personal and financial details of customers making or changing bookings at ba.com, and on our app were compromised. The stolen data did not include travel or passport information.

 “The breach has been resolved and our website is working normally.

 “We’re deeply sorry, but you may have been affected. We recommend that you contact your bank or credit card provider and follow their recommended advice.

 “We take the protection of your personal information very seriously. Please accept our deepest apologies for the worry and inconvenience that this criminal activity has caused.

 “Further information can be found at ba.com.”

Is BA offering compensation for the data breach?

British Airways customers have rightly vented their fury at the airline, especially as it long it took them so long to notice that they had been attacked.

Customers have also taken to social media to raise concerns about how secure BA’s IT security processes are. And they are right to do so. Just because BA was a victim of cybercriminals, doesn’t mean it is any less liable if it failed to protect your all-important data sufficiently. Big companies must be held to account.

The airline has said that compensation claims will be discussed on an ‘individual basis’. However, it is not up to BA to dictate the terms of any compensation payments.

At Hayes Connor Solicitors, we are experts in data breach cases, and, once you have registered with us, it’s not uncommon that we uncover information that allows us to increase the value of your claim significantly. What might seem irrelevant to you, could make a huge difference in the eyes of the law. That’s why it’s important not to be fobbed off by a low initial offer from BA. Instead, by making a no-win, no-fee claim with us, we can increase the amount of compensation you receive substantially.

Crucially, it doesn’t matter if you haven’t lost out financially as a result of the hack. A personal data breach is a 21st-century version of being burgled and being the victim of a crime can have a significant impact on you mentally and physically. So, if the data breach has caused you stress or anxiety, then the law agrees that you are entitled to compensation.

What can you do about the BA data breach?

With investigations now underway into the data breach, if BA is found responsible for this appalling data protection failure, the airline will no doubt have to pay a hefty fine. But, while the Information Commissioner’s Office does issue fines, it does not award data breach compensation. At Hayes Connor Solicitors, our data breach solicitors can help you with that.

We have already been contacted by many British Airway customers who are worried that their personal and financial data was not looked after as carefully as it should have been.

In response, we are preparing a group action compensation claim for everyone who has had their data accessed in the BA data breach if it is found that BA have failed to adequately protect that data.

To preserve your ability to claim, you will need you to register with us. We’ll let you know what is happening in this case and if and when you can make a data breach compensation claim.

Data breaches often have severe consequences for those affected so you could be entitled to up to £5,000 in compensation.

REGISTER NOW