Ireland British Airways fined €22m over data hack

British Airways fined €22m over data hack

-

British Airways has been fined £20 million (€22 million) over a 2018 data hack, the UK’s Information Commissioner’s Office (ICO) has announced.

Investigators found the airline should have identified the security weaknesses which enabled the attack to take place.

The carrier failed to protect the personal and financial details of more than 400,000 customers, the ICO said.

It did not detect the hack for more than two months.

Information Commissioner Elizabeth Denham said: “People entrusted their personal details to BA, and BA failed to take adequate measures to keep those details secure.

“Their failure to act was unacceptable and affected hundreds of thousands of people, which may have caused some anxiety and distress as a result.

“That’s why we have issued BA with a £20 million fine – our biggest to date.

“When organisations take poor decisions around people’s personal data, that can have a real impact on people’s lives.

“The law now gives us the tools to encourage businesses to make better decisions about data, including investing in up-to-date security.”

We alerted customers as soon as we became aware

The ICO announced in July last year that British Airways could be fined more than £183 million.

This is more than nine times the £20 million the airline has eventually been fined.

The ICO said it considered “representations from BA and the economic impact of Covid-19 on their business” before setting the final penalty.

A British Airways spokeswoman said: “We alerted customers as soon as we became aware of the criminal attack on our systems in 2018 and are sorry we fell short of our customers’ expectations.

“We are pleased the ICO recognises that we have made considerable improvements to the security of our systems since the attack and that we fully co-operated with its investigation.”

The attacker is believed to have potentially accessed the personal data of approximately 429,612 customers and staff.

This included the names, addresses, payment card numbers and the three digits on the back of cards of 77,000 customers, and card numbers only for 108,000 customers.

Usernames and passwords of British Airways’ employee and administrator accounts, as well as the usernames and PINs of up to 612 of the airline’s Executive Club accounts, were also potentially accessed.

Leave a Reply

Latest news

Tiger King star Carole Baskin makes announcement on her sexuality

Tiger King star Carole Baskin has come out as bisexual and said she “could just as easily have a...

Hollywood actor Jeff Bridges diagnosed with lymphoma

Hollywood actor Jeff Bridges has announced he has been diagnosed with lymphoma. The 70-year-old star of films including The Big...

Taraji P Henson confirms split from fiance Kelvin Hayden

Hollywood actress Taraji P Henson has announced she has split from fiance Kelvin Hayden. The Oscar-nominated star of The Curious...

Zendaya shares surprising Euphoria news

Zendaya has surprised fans by announcing two special episodes of Euphoria are on the way. The actress – who last...

UK exposes Russian cyber attacks against Tokyo Olympics

The Russian military intelligence service (GRU) carried out cyber attacks on officials and organisations linked to the 2020 Tokyo...

Pretty Woman boots and Top Gun bomber jacket up for auction

Tom Cruise’s Top Gun bomber jacket and Julia Roberts’ Pretty Woman boots are going under the hammer. More than 900...

Must read

You might also likeRELATED
Recommended to you