Revealed: The shadowy hacker group blamed for attack on British Airways

Hannah Boland

Updated September 12, 2018 at 5:05 AM

A group called Magecart, which is believed to have links to Romania and Lithuania, may have been responsible - PA

Hackers who masterminded a major security breach of Ticketmaster are being blamed for an attack on British Airways where the credit card details of 380,000 people were stolen.

British Airways revealed late last week that hundreds of thousands of its customers' personal and financial details had been stolen between August 21 and September 5.

RiskIQ researcher Yonathan Klinjsma said a shadowy group called Magecart, which is believed to have links to Russia, may have been responsible.

The group is known for carrying out devastating web-based credit card skimming scams and has been active since at least 2015, according to RiskIQ, a cyber-security consulting firm.

It carries out its attacks by loading a malicious piece of code onto a website and siphoning off private data off to a remote server.

Mr Klinjsma said there is evidence that Magecart carried out both the BA attack and the hack on Ticketmaster in June, which affected around 40,000 customers.

In the latest hack on BA, 22 lines of modified code were inserted onto the airline's baggage claim page. The code is believed to have been an updated version of Magecart's trademark script.

Mr Klinjsma said it now appears hackers may have had access to the British Airways site from August 15, which would have given them time to prepare the attack.

The RiskIQ experts said: "The attack was similar to the one leveled against Ticketmaster with one key difference: instead of compromising commonly used third-party functionality to gain access to hundreds of sites at once, Magecart operatives compromised the British Airways site directly and planned their attack around the site’s unique structure and functionality.

"While we can never know how much reach the attackers had on the British Airways servers, the fact that they were able to modify a resource for the site tells us the access was substantial, and the fact they likely had access long before the attack even started is a stark reminder about the vulnerability of web-facing assets."

British Airways declined to comment on whether Magecart had been involved in the breach, saying: "As this is a criminal investigation, we are unable to comment on speculation."

The BA breach was the latest in a series of attacks on the airline sector, including on Air Canada, which revealed data from 20,000 customers had been stolen, and on Thomas Cook which admitted names, emails and flight details of customers had been compromised.

Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
What scouts think of Bronny James' NBA prospects
The biggest question looming over the NBA draft combine this week: How will Bronny James do?
Yahoo Sports
2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set
With the lottery order set, here's a look at Yahoo Sports' projections for both rounds of the 2024 NBA Draft.
Yahoo Sports
NFL schedule release: Chiefs to host Ravens in 2024 season opener
Chiefs vs. Ravens on Sept. 5 will be a rematch of last season's AFC Championship Game.
Yahoo Sports
Your favorite WNBA rookies didn’t make the cut. So what’s their path back to the league?
For rookies who were waived, the climb to their pro dreams is steeper, but the path ahead is well-worn with trail markers of established success.
Yahoo Sports
The Spin: Making a call on 5 slumping fantasy baseball stars
All five of these hitters were drafted highly in fantasy baseball leagues. So far, they have not lived up to their ADPs — and that's an understatement. Scott Pianowski analyzes.
Yahoo Finance
Utility stocks are on fire — here are Wall Street analysts' top picks
Utility stocks are outperforming the broader markets. Here's a look at three top picks from analysts.
Yahoo Sports
Former MLB infielder, Little League World Series star Sean Burroughs dies at 43
The seven-year major leaguer collapsed while coaching his son's Little League game on Thursday.
Yahoo Sports
MLB Power Rankings: Phillies lead Dodgers, Braves as trio of NL contenders top this week's list
Here's a look at the rookies who have stood out on each team through the first quarter of the 2024 season.
Yahoo Sports
Where does Jared Goff’s $212M extension leave Dak Prescott and Cowboys?
In one scenario, Dallas makes Prescott the highest paid player in NFL history. In another, the Cowboys decline that commitment, at which point another team will make him the top paid player in NFL history.
Autoblog
Best used cars to buy in 2024: From trucks and SUVs to EVs
The best used cars to buy in 2024 include small and midsize cars, trucks, crossovers and SUVs, and even a couple of used electric cars.
Yahoo Finance
Here's 1 big investing mistake you are probably still making
Maybe a 5% CD isn't the best choice for your hard-earned money.
Yahoo Sports
The best RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’
The 2024 Yankees have rediscovered their bravado and hold the second-best record in the AL, thanks in large part to the superstar outfielder.
Yahoo Sports
LeBron James greeted with rousing ovation from Cavaliers fans while sitting courtside for Celtics game
LeBron James' offseason of intrigue continued Monday with a visit to Cleveland.
Yahoo Sports
Lions reportedly sign QB Jared Goff to 4-year, $212 million extension
The Detroit Lions have had a busy offseason, and that continued on Monday with the reported extension of quarterback Jared Goff.
Yahoo Sports
Architect of PGA-LIV framework agreement resigns in frustration: 'No meaningful progress' toward a deal
Jimmy Dunne cited 'no meaningful progress' being made in negotiations between the PGA Tour and LIV Golf as a reason for his resignation.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.
Yahoo Sports
Six quarterback situations to worry about & three that are on the precipice | Zero Blitz
Jason Fitz, Charles Robinson and Frank Schwab talk about which quarterback rooms concern them and which they find interesting heading into the 2024 NFL season.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Revealed: The shadowy hacker group blamed for attack on British Airways

Recommended Stories

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

What scouts think of Bronny James' NBA prospects

2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set

NFL schedule release: Chiefs to host Ravens in 2024 season opener

Your favorite WNBA rookies didn’t make the cut. So what’s their path back to the league?

The Spin: Making a call on 5 slumping fantasy baseball stars

Utility stocks are on fire — here are Wall Street analysts' top picks

Former MLB infielder, Little League World Series star Sean Burroughs dies at 43

MLB Power Rankings: Phillies lead Dodgers, Braves as trio of NL contenders top this week's list

Where does Jared Goff’s $212M extension leave Dak Prescott and Cowboys?

Best used cars to buy in 2024: From trucks and SUVs to EVs

Here's 1 big investing mistake you are probably still making

The best RBs for 2024 fantasy football, according to our experts

Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’

LeBron James greeted with rousing ovation from Cavaliers fans while sitting courtside for Celtics game

Lions reportedly sign QB Jared Goff to 4-year, $212 million extension

Architect of PGA-LIV framework agreement resigns in frustration: 'No meaningful progress' toward a deal

The best budgeting apps for 2024

Six quarterback situations to worry about & three that are on the precipice | Zero Blitz

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'