Last year on 6th Sept, British Airways was hacked and 380,000 users data was stolen. And the stolen information included personal and payment information but not passport information.
As you know, United Kingdom has enabled the data security & privacy regulations now and under the regulation, British Airways is facing fine of £183 million. This is huge. For abstract information, you can explore below link on GDPR.
British Airways: How 22 Lines of Code Claimed 380,000 Victims
Abstract
On its website, British Airways placed an article explaining details of the incident that answered as many questions as possible for customers. The technical details were sparse but included the following pieces of information:
- Payments through its main website were affected
- Payments through its mobile app were affected
- Payments were affected from 22:58 BST August 21, 2018, until 21:45 BST September 5, 2018
Reads more in
https://www.riskiq.com/blog/labs/magecart-british-airways-breach/