- Apr 21, 2016
- 3,440
The data breach suffered by British Airways which exposed the payment card details of around 380,000 customers appears to be the work of the Magecart cybercriminal group, according to a report from RiskIQ.
After their internal investigation of the hacking incident, British Airways disclosed that both their mobile app and their website were affected, with all payments being impacted for a period of about 16 days, from August 21 to September 5.
RiskIQ detected found out that the Magecart threat group conducted the attack after BA's report mentioned that none of their other services, servers or databases were affected.
This led the security research team to the conclusion that the payment service was the single culprit for the data breach, an area of expertise well-known to Magecart.
The crooks have been known to use web-based card skimmers as the means for stealing credit card payment data, an online version of the classic card skimmers usually hidden by crooks in ATMs and all sorts of other card reading machines.
Read more: 380,000 British Airways Customers Victims of Only 22 Lines of JavaScript
After their internal investigation of the hacking incident, British Airways disclosed that both their mobile app and their website were affected, with all payments being impacted for a period of about 16 days, from August 21 to September 5.
RiskIQ detected found out that the Magecart threat group conducted the attack after BA's report mentioned that none of their other services, servers or databases were affected.
This led the security research team to the conclusion that the payment service was the single culprit for the data breach, an area of expertise well-known to Magecart.
The crooks have been known to use web-based card skimmers as the means for stealing credit card payment data, an online version of the classic card skimmers usually hidden by crooks in ATMs and all sorts of other card reading machines.
Read more: 380,000 British Airways Customers Victims of Only 22 Lines of JavaScript