Welcome to Finextra. We use cookies to help us to deliver our services. We'll assume you're ok with this, but you may change your preferences at our Cookie Centre.
Please read our Privacy Policy.

Accept
Channels

/security

News and resources on cyber and physical threats to banks and fintechs worldwide.
News
See Payments headlines »

Lead Channel

Security

Channels

Retail banking Payments

Keywords

Cards E-commerce
Editorial | what does this mean?
This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.
British Airways warns another 185,000 cards compromised by data breach

British Airways warns another 185,000 cards compromised by data breach

British Airways is warning that another 185,000 customers may have had their payment card details stolen in a data breach.

The airline says that customers who made reward bookings with payment cards between April 21 and July 28 are at risk.

It is contacting the holders of 77,000 payment cards to warn that their names, billing addresses, email addresses, and card payment information, including card number, expiry date and CVV, have potentially been compromised. A further 108,000 have had the same information compromised minus the CVV.

BA only discovered the breach while investigating a similar hack that was carried out later but uncovered in early September. That attack was initially thought to have involved the card details of 380,000 customers, although BA has now revised this down to 244,000.

The company says that it has had no verified cases of fraud related to that incident and that there is no "conclusive evidence" that data was removed from its systems in the newly announced hack.

However, it is promising to contact everyone involved by Friday afternoon, advising them to speak to their bank or card provider.

Lead Channel

Security

Channels

Retail banking Payments

Keywords

Cards E-commerce
Editorial | what does this mean?
This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

Sponsored: Join us at Money20/20 Europe 2024 - 4-6 June, Amsterdam | Use code FEX200 to save €200 on your ticket

Comments: (1)

A Finextra member
A Finextra member 26 October, 2018, 14:25Be the first to give this comment the thumbs up 0 likes

As one of those potentially affected by this breach, these clowns should be severly fined (and I mean £millions) for keeping and storing full PAN numbers as well as CVV numbers. Card acquirers and schemes have been warning merchants for years that hanging on to the CVV is a no, no, and yet BA think they don't need to comply when the rest of the merchant community are doing so? Clearly demonstrates a two fingered gesture to PCI-DSS and they should pay dearly.

Report abuse
Join the discussion

Write a blog post about this story (membership required)

[Upcoming Webinar] Instant Payments and their impact on the fraud landscape[Upcoming Webinar] Instant Payments and their impact on the fraud landscape

Trending

Related News
British Airways data breach hits 380,000 cards

British Airways data breach hits 380,000 cards

Trending

  1. TOP-5 use cases for GenAI implementation in Banks or Fintech companies

  2. UK government announces open finance task force

  3. Lloyds warns against fraudsters on Booking.com and Airbnb

  4. Canada's real-time payment system won't launch before 2026

  5. Temenos rejects Hindenburg claims after probe completed

Research
See all reports »
The Future of UK Fintech - 2015-2035

The Future of UK Fintech - 2015-2035

Definitive Differentiators - Forging a future-proof payments model

Definitive Differentiators - Forging a future-proof payments model

APP Fraud Liability: A Guide for Banks

APP Fraud Liability: A Guide for Banks