Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Security

British Airways Breach Caused By the Same Group That Hit Ticketmaster (zdnet.com) 11

An anonymous reader shares a report: A cyber-criminal operation known as Magecart is believed to have been behind the recent card breach announced last week by British Airways. The operation has been active since 2015 when RisqIQ and ClearSky researchers spotted the malware for the first time. The group's regular mode of operation involves hacking into online stores and hiding JavaScript code that steals payment card information entered into store checkout pages, information such as credit card numbers, names, addresses, and whatever is collected via payment forms. The group has been very active in the past three years, being blamed for injecting card skimming scripts on thousands of sites, with the most recent trove of compromised sites being discovered two weeks ago. Of all its hacks, the most notorious incident was when the group compromised a third-party chat provider and used its infrastructure to drop malicious scripts on the Ticketmaster checkout page. [...] In a report published today, researchers at RisqIQ say they found clues linking the same Magecart operation to the British Airways breach. This breach was announced last week when British Airways said that an unidentified hacker compromised its systems and stole the card details of over 380,000 users.
This discussion has been archived. No new comments can be posted.

British Airways Breach Caused By the Same Group That Hit Ticketmaster

Comments Filter:
  • by DrYak ( 748999 ) on Tuesday September 11, 2018 @12:03PM (#57291206) Homepage

    Would a lot harder harder to achieve with cards that require a second out-of-band confirmation.

    The attacker would still get everything that goes into the checkout form on the attacked website,
    but they would lack what goes - e.g. - into the confirmation app on the smartphone.
    Thus they couldn't use the data to make purchases on the users' behalf.

    On the other hand, this data might be enough to do some social engineering (see customer services that ask last part of card number as a form of identity proof).

  • by Impy the Impiuos Imp ( 442658 ) on Tuesday September 11, 2018 @12:49PM (#57291506) Journal

    Stupid Americans and their lazy regulatory government and lax corporations. We Brits have a tight reign on secur...

  • by gweihir ( 88907 ) on Tuesday September 11, 2018 @02:16PM (#57292042)

    Hence while the actual crime was surely committed by them, BA left the barn door wide open for them to waltz in.

Don't tell me how hard you work. Tell me how much you get done. -- James J. Ling

Working...