Legal help for data breach compensation claims

Code use in British Airways cyber attack identified

Posted by Matthew on September 12, 2018 in the following categories: British Airways Data Breach Cybersecurity Group Action Hacking News Latest and tagged with | | | |

shortage of cybersecurity specialists

It’s understood that the code used in the British Airways cyber attack that compromised the payment data for 380,000 has been found.

A cyber security firm has reportedly identified the malicious code that was injected into the British Airways site that led to the massive data breach that we’ve initiated legal action for. As previously suspected, the code reportedly acts like a digital form of “skimming” where information entered into payment forms is copied and stolen.

The revelation means we’re one step close to uncovering how the biggest data hack of the new GDPR era was committed as we fight for compensation for victims of the attack.

British Airways cyber attack: the biggest of the new GDPR era

The British Airways cyber attack is undoubtedly the biggest attack in the post-GDPR era since the legislation changes that took place in May earlier this year.

The payment information for some 380,000 people has been compromised, which includes the full long card number; expiration dates of cards; security (CVV) codes of card; and the personal information of the customer, such as their name and email address.

This is enough to place victims of the British Airways cyber attack at an immediate and serious risk of fraud. Victims are being urged to contact their banks for replacements cards to replace the compromised ones.

Similarities in the British Airways cyber attack and the Ticketmaster data breach

There are reportedly stark similarities in the British Airways cyber attack and the Ticketmaster data breach that we’re also representing victims for in a group action legal case.

It appears that code has reportedly been injected into the payment procedure which has essentially copied the data entered, which can be sent directly to the hackers responsible.

It’s understood that there was just 22 lines of code used in the British Airways cyber attack, which applied to both the website and their app. It’s also reportedly said that the code was specifically modified to suit the British Airways website, suggesting that this was a tailored attack.

No comment from airline on the latest British Airways cyber attack revelations

There has been no comment from the airliner so far over the security firm’s claims that they’ve cracked the secret of the British Airways cyber attack.

We’ll continue to monitor the developments as we’re incredibly keen to learn how this attack happened and how British Airways managed to allow such a wealth of personal and sensitive data to be compromised.

Whatever the outcome of the investigations, we’re acting for victims of the British Airways cyber attack in a legal action. Our lawyers are already fighting in over 20 different data breach actions, and we’re committed to helping victims on our No Win, No Fee service.

Request a call back from our team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
All fields marked with a * are required.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy.
You have the right to object to the processing of your personal data.


A guide for victims of the British Airways data theft incident
British Airways data breach compensation action advice
%d bloggers like this: