Back to Squawk list
  • 17

British Airways Faces Massive £183 Million Fine Over Passenger Data Breach

British Airways (BA) is facing a hefty £183 million fine from the United Kingdom's Information Commissioner's Office (ICO), following the major data breach that hit the airline in 2018, where hackers accessed more than 500,000 passengers details. Alex Cruz, chairman, and chief executive of British Airways, admitted being "Surprised and Disappointed" with the action taken by the ICO. ( 기타...

Sort type: [Top] [Newest]

How about requiring BA to drop that sum into beefing up their security?
I agree. Willie Walsh must have had a conniption after seeing all the zeros following that 184.
I'm reminded of the old Mitchell and Webb "Identity Theft" skit:

Interesting trend. "You had your house broken in to? Here's a fine for not having enough security. What's enough, you ask? We don't know we just want the money."
Ummm...big difference having 1's house broken into to having a data server system be hackable that contains customer info..2x. But if wr are analyzing broke into in May, told to better secure to make it difficult/impossible. However, if said house was broken into a second time, in Sept., because you did not take steps to secure it better, that fine would be much higher insurance premiums. In this case, BA got hacked at least 2x.."once shame on the hackers, twice shame on BA".
What's enough to not get much as it takes to not get hacked. And that fine really isn't that basically says the customers info is worth about 366 pounds each. Sorry but I think my personal and financial info is worth more than that.
I agree, but I think these fines are rather self defeating unless negligence can be proved. I've been in computer security for decades and know full well that you can follow the governments recommendations to the letter and still get hacked. If negligence can be proved - and it might be - then a fine is appropriate, but being fined for the mere fact of being a victim is not a good idea, and this is how the ICO currently seem to work - as a profit centre.
I think this says a lot thou "It is still not clear how the hackers accessed the data last year; however, the watchdog which regulates the GDPR law that came into effect last year, said that they found that the hackers were able to breach the site due to “inadequate security arrangments” from the airline." Remember BA got hacked earlier in the year, so that should have sent up a red flag to them..."find the back door NOW" Even if that meant air gapping the data server as a temporary solution. Companies should be stepping above government recommendations when it comes to data security, especially if monetary items are hacked such as CC's.
There are millions of hackers and only a few people in any security setup. Hackers can do as they like, IT departments have to obey the law. Hackers only need to succeed once, security staff need to be perfect every day. Maybe in ten years we can expect good security to be routinely applied - we're heading that way - but odds are currently loaded and in an unclear regulatory and standards environment, draconian fines are not the answer without VERY clear evidence of negligence. They may even impede communication and reporting.
Gosh, in America, it's practically normal business operations to expose your client/customer data. It's so commonplace...

*YAWN* 'Delta's customer database was exposed on an unprotected server'. In other news, blah blah blah...
The Government openly sell citizens data to all manner of companies, the CO is just a bankrolling operation for Whitehall


계정을 가지고 계십니까? 사용자 정의된 기능, 비행 경보 및 더 많은 정보를 위해 지금(무료) 등록하세요!
이 웹 사이트는 쿠키를 사용합니다. 이 웹 사이트를 사용하고 탐색함으로써 귀하는 이러한 쿠기 사용을 수락하는 것입니다.
FlightAware 항공편 추적이 광고로 지원된다는 것을 알고 계셨습니까?
FlightAware.com의 광고를 허용하면 FlightAware를 무료로 유지할 수 있습니다. Flightaware에서는 훌륭한 경험을 제공할 수 있도록 관련성있고 방해되지 않는 광고를 유지하기 위해 열심히 노력하고 있습니다. FlightAware에서 간단히 광고를 허용 하거나 프리미엄 계정을 고려해 보십시오..