The security company installed a credit card skimming / malware installed by a British Airlines hacker A few months ago, the website was responsible for data breach of over 380,000 credit cards.
Payments by airline website and mobile applications were stolen during the three week period.
RiskIQ threat researcher Yonathan Klijnsma suspected that the same group was the root of Ticketmaster violation, Hitacker was targeting a third of Ticketmaster's code. Various sites. From there, it can suck thousands of transactions.
Klijnsma said that Klijnsma adopted a more targeted approach, which portrays the wave of attacks that the group's "Magecart" last month had the habit of stealing thousands of records from various sites. It is.
"This attack by British Airways was an extension of this campaign," he said before the research announcement.
According to his survey on Tuesday, hackers inject code directly into the company's website, which the company shares with the website and mobile applications. Using the company's Web-based scanning technology, it turned out that the code hosted on the company's global site was infringed on August 21, which is a violation date, and that malicious code was invading .
When you click on the ticket purchased by the customer, the code clears the credit card information on the open payment page and sends the data to a fake site managed by the hacker. Private server in Romania.
Hope you like the above news
Researchers say British Airways violations were caused by malware crushing credit cards
. Stay Tuned For More Updates :)