British Airways is investigating the theft of customer data from its website, ba.com, as well as the airline’s mobile app.
The stolen data did not include travel or passport details, British Airways said in a statement.
About 380,000 transactions are thought to be affected.
From 22:58 August 21st until 21:45 September 5th, the personal and financial details of customers making bookings on ba.com and the airline’s app were compromised.
The breach has been resolved and the website is working normally, BA said/
“British Airways is communicating with affected customers and we advise any customers who believe they may have been affected by this incident to contact their banks or credit card providers and follow their recommended advice,” the statement explained.
BA said it had notified the police and relevant authorities.
Alex Cruz, British Airways chief executive, said “We are deeply sorry for the disruption that this criminal activity has caused.
“We take the protection of our customers’ data very seriously.”
British Airways said it would provide further updates “when appropriate”.
Responding to the incident, Alex Neill, Which? managing director of home products and services, said: “British Airways customers will be concerned to hear about this data breach.
“It is now vital that the company moves quickly to ensure those affected get clear information about what has happened and what steps they should take to protect themselves.
“Anyone concerned they could be at risk of fraud should consider changing their online passwords, monitor bank and other online accounts and be wary of emails regarding the breach as scammers may try and take advantage of it.”