Newsbytes
  • India
  • Business
  • World
  • Politics
  • Sports
  • Technology
  • Entertainment
  • Auto
  • Lifestyle
  • Inspirational
  • Career
  • Bengaluru
  • Delhi
  • Mumbai
  • Videos
  • Visual Stories
  • Reviews
  • Phone Reviews
  • Fitness Bands Reviews
  • Speakers Reviews
  • Find Cricket Statistics
Hindi
More
In the news
Google
Motorola
Indian Space Research Organisation (ISRO)
Smartwatches
OnePlus 10T
Newsbytes
Hindi
Newsbytes
User Placeholder

Hi,

Logout


India
Business
World
Politics
Sports
Technology
Entertainment
Auto
Lifestyle
Inspirational
Career
Bengaluru
Delhi
Mumbai
Videos
Visual Stories
Reviews
Phone Reviews
Fitness Bands Reviews
Speakers Reviews
Find Cricket Statistics

More Links
  • Videos

Download Android App

Follow us on
  • Facebook
  • Twitter
  • Linkedin
  • Youtube
 
Home / News / Technology News / #BritishAirwaysHack: All it took was 22 lines of code
Technology

#BritishAirwaysHack: All it took was 22 lines of code

#BritishAirwaysHack: All it took was 22 lines of code
Written by Shiladitya Ray
Sep 12, 2018, 07:26 pm 2 min read
#BritishAirwaysHack: All it took was 22 lines of code

Following a massive security breach that left the data of 380,000 British Airways customers compromised, cybersecurity firm RiskIQ has now found that it took hackers a mere 22 lines of code to steal the data. Meanwhile, UK law enforcement agencies, including the National Crime Agency and the National Cyber Security Centre, are still continuing their investigations into the hack. Here are the details.

Quote
Personal and financial details of customers were compromised

"The personal and financial details of customers making bookings on our website and app were compromised. The breach has been resolved and our website is working normally. We've notified the police and relevant authorities," British Airways had said after the breach.

Hackers?
RiskIQ thinks a group called Magecraft was responsible

Drawing on earlier experience, RiskIQ speculated that a hacker group called Magecart was behind the British Airways hack. Magecraft was also responsible for the Ticketmaster UK hack earlier this year, which saw the data of 400,000 customers getting compromised. Notably, Magecraft's modus operandi involves injecting lines of malicious code into payment forms - an MO which was abundantly clear in the British Airways hack.

Quote
The Magecraft hacker group has been active since 2015

"The Magecart actors have been active since 2015 and have never retreated from their chosen criminal activity. Instead, they have continually refined their tactics and targets to maximize the return on their efforts," said RiskIQ in a statement.

How?
How the hackers managed to steal user data

RiskIQ found that the hackers, using 22 lines of code, modified a Modernizr javascript version 2.6.2 (a library that detects user actions like clicks and taps) on British Airways' website to steal customers' data between August 21 and September 5. The modification allowed BA customers' data to be uploaded to the hackers' servers any time someone clicked the 'Submit' button on a payments form.

BA's woes
The hack has landed British Airways in trouble

Several experts have noted that the British Airways should have detected the change to its code on its production server. The hack has landed the airlines in a fix, and a law firm called SPG law is currently contemplating suing BA for £500 million - it has already put up a dedicated website where affected users can make a claim.

Share this timeline
Facebook
Whatsapp
Twitter
Linkedin
Shiladitya Ray
Shiladitya Ray
Mail
Budding social scientist with a keen interest in social studies of science and the sociology of knowledge. Cinephile. Liverpudlian. Metalhead.
Latest
British Airways
National Crime Records Bureau
Data Leak
Latest
You can now play cloud games directly from Google Search
You can now play cloud games directly from Google Search Technology
This Swiggy delivery executive on crutches wins the internet
This Swiggy delivery executive on crutches wins the internet Bengaluru
BCCI sets aside March 2023 for Women's IPL: Details here
BCCI sets aside March 2023 for Women's IPL: Details here Sports
La Liga 2022-23: All you need to know
La Liga 2022-23: All you need to know Sports
Shashi Tharoor to receive highest French civilian honor for writing
Shashi Tharoor to receive highest French civilian honor for writing India
British Airways
London's Heathrow Airport caps daily passenger limit. Here's why
London's Heathrow Airport caps daily passenger limit. Here's why World
Aviation Minister says suspension of UK flights may be extended
Aviation Minister says suspension of UK flights may be extended India
Sonam Kapoor had the "scariest experience" with Uber in London
Sonam Kapoor had the "scariest experience" with Uber in London Entertainment
Faf du Plessis to miss flight to India: Here's why
Faf du Plessis to miss flight to India: Here's why Sports
Nearly all British Airways flights cancelled amid two-day strike
Nearly all British Airways flights cancelled amid two-day strike World
More News
National Crime Records Bureau
UP: 4 members of Dalit family found dead in Prayagraj
UP: 4 members of Dalit family found dead in Prayagraj India
16-year-old raped by 400 people, including cop, in Maharashtra
16-year-old raped by 400 people, including cop, in Maharashtra India
CBI arrests UP government engineer for sexually abusing 50 children
CBI arrests UP government engineer for sexually abusing 50 children India
Wife's picture circulated as Hathras victim: Man tells Delhi HC
Wife's picture circulated as Hathras victim: Man tells Delhi HC India
Suicides by daily-wage earners on the rise; 23% in 2019
Suicides by daily-wage earners on the rise; 23% in 2019 India
More News
Data Leak
Cyberattack targets Acer's Indian aftersales systems, steals 60GB of data
Cyberattack targets Acer's Indian aftersales systems, steals 60GB of data Technology
Here's why security researchers think Amazon's Astro bot isn't safe
Here's why security researchers think Amazon's Astro bot isn't safe Technology
Researcher discovers FBI terrorist watchlist exposed online for three weeks
Researcher discovers FBI terrorist watchlist exposed online for three weeks Technology
T-Mobile investigating alleged data hack affecting 100 million customers
T-Mobile investigating alleged data hack affecting 100 million customers Technology
Government claims Co-WIN data of 150 million Indians wasn't leaked
Government claims Co-WIN data of 150 million Indians wasn't leaked Technology
More News
Next News Article
Next News Article

Love Technology news?

Subscribe to stay updated.

Science Thumbnail
India News Business News World News Politics News Sports News Technology News Entertainment News Auto News Lifestyle News Inspirational News
Career News Bengaluru News Delhi News Mumbai News Mukesh Ambani Indian Premier League (IPL) Karnataka Samsung Xiaomi West Bengal
Bihar Virat Kohli Rohit Sharma Haryana Narendra Modi Arvind Kejriwal Tamil Nadu Gujarat Yogi Adityanath YouTube
Instagram Hollywood News Uttar Pradesh Kerala Netflix Bollywood News Mamata Banerjee Maruti Suzuki Rahul Gandhi Elon Musk
Shah Rukh Khan Chelsea FC OPPO Akhilesh Yadav Indian Cricket Team Apple Manchester United Salman Khan Cryptocurrency OnePlus
Amitabh Bachchan ICC Women's World Cup Vivo India vs Sri Lanka
About Us Privacy Policy Terms & Conditions Contact Us Ethical Conduct Grievance Redressal News News Archive Topics Archive IPL 2022 Schedule IPL 2022 Points Table Find Cricket Statistics
Follow us on
Facebook Twitter Linkedin Youtube
All rights reserved © NewsBytes 2022