British Airways Data Breaches
In 2018 the airline company suffered a significant breach of their systems with the personal and financial details of almost 400,000 customers being impacted, making it one of the most severe cyber-attacks in UK history.
The Information Commissioners Office has now fined British Airways, and its parent company, International Airlines Group (IAG), £20 million, one of the highest fines the ICO has levelled at a company for a GDPR data breach.
In terms of the data that was breached, the ICO found “that a variety of information was compromised by poor security arrangements at [BA], including log in, payment card, and travel booking details as well name and address information.”
A further breach of their systems took place in July 2019 and involved BA’s e-ticketing system. Security researchers uncovered unencrypted links which could allow attackers to intercept and change the flight booking details and personal information of passengers.
This vulnerability in the e-ticketing system might have also exposed sensitive passenger information such as names, email addresses, phone numbers and more.
Over the six-month period that these links were unencrypted, an estimated 2.5 million connections were made to the British Airways domains, making the potential impact quite significant.
Our expertise with data breaches
RNL Solicitors is home to one of the largest team of data breach claims specialists in the country. With a wealth of experience and an excellent track record of success, we can guide clients through dealing with any situation where personal data has been lost, stolen or otherwise exposed.
If your data has been exposed or potentially exposed in a data breach, you may be entitled to compensation.
To see how we can help with a data breach, you can use our online contact form below or speak to a member of our team by calling 01 901 1355.