Major airline British Airways has recently apologised for a major hack to its website, BA.com. Over the course of two weeks in late August and early September, 380,000 credit card transactions were compromised, including the long number, expiry date and the three-digit CVV security code.
While investigating the incident, cybersecurity firm RiskIQ discovered that a “skimming” script was loaded onto the BA website by hackers. This malicious code is designed to steal financial data from online payment forms and appears to have been modified to take advantage of the way the BA site operates. The same script was also found on the company’s app.
BA isn’t the only victim of such an event in this industry. Earlier this year, Delta admitted to two breaches during September and October last year. in July, Thomas Cook admitted that names, emails and flight details for a small number of customers had been accessed. And just last week, Air Canada confirmed a data breach affecting 20,000 customers.
Read more at BBC.co.uk