After a data breach reported in September 2018, British Airways (BA) faces a record £183.3m fine from the Information Commissioner’s Office (ICO). During the scam which operated between 21st August and 5th September 2018, BA online customers were diverted to a fake website which stole the details of around 500,000 users. Harvested data included card details, names and addresses and travel booking details. BA are said to have cooperated with the investigation into the incident and made improvements to their systems since it was discovered.
Anyone who thinks they may have been affected is recommended to contact their bank or credit card provider and to check their accounts for any unusual transactions. It is also advisable to change the password on any important accounts and to consider multi-factor authentication, such as SMS-based two-factor authentication. Remain extra vigilant for phishing attacks which may use the compromised data to obtain further information from you. Emails from legitimate companies will not ask you to reply with personal or account information. Do not click on links or use the contact details supplied in an email as they could be false and/or malicious. Instead, confirm the identity of the source by searching for contact details independently.