Connect with us

Hi, what are you looking for?

Business

BA’s UK staff and Boots hit by cyber security breach with bank details exposed

British Airways (BA) has revealed all its staff who are paid in the UK have been caught up in a cyber incident that has exposed personal data including bank and contact details to hackers.

It emerged last week that a so-called zero-day vulnerability – a flaw – in the file transfer system MOVEit, produced by Progress Software, had been exploited by cyber criminals.

It had allowed the hackers to access information on a range of global companies using MOVEit Transfer.

Thousands of firms are understood to be affected.

UK-based payroll provider Zellis confirmed on Monday that eight of its clients were among them.

It did not name the organisations.

BA, however, confirmed it had been caught up in the affair.

The airline employs 34,000 people in the UK.

Boots said it had been affected too.

The compromised information includes contact details, national insurance numbers and bank details.

A BA Spokesman said: “We have been informed that we are one of the companies impacted by Zellis’ cybersecurity incident which occurred via one of their third-party suppliers called MOVEit.

“Zellis provides payroll support services to hundreds of companies in the UK, of which we are one.

“This incident happened because of a new and previously unknown vulnerability in a widely used MOVEit file transfer tool. We have notified those colleagues whose personal information has been compromised to provide support and advice.”

A Boots spokesperson said: “A global data vulnerability, which affected a third-party software used by one of our payroll providers, included some of our team members’ personal details.

“Our provider assured us that immediate steps were taken to disable the server, and as a priority we have made our team members aware.”

Zellis said in its own statement: “A large number of companies around the world have been affected by a zero-day vulnerability in Progress Software’s MOVEit Transfer product.

“We can confirm that a small number of our customers have been impacted by this global issue and we are actively working to support them.

“All Zellis-owned software is unaffected and there are no associated incidents or compromises to any other part of our IT estate.

“Once we became aware of this incident we took immediate action, disconnecting the server that utilises MOVEit software and engaging an expert external security incident response team to assist with forensic analysis and ongoing monitoring.”

Comments by Emma Whitmore, Group Vice President, EMEA at Edgio: “Cyberattacks can happen at any time, often without warning. British Airways and Boots’ breach demonstrates that no organisation is safe from the threat cybercriminals pose and adequate security solutions are an absolute necessity in today’s climate.

“Organisations need full 360-degree visibility into all traffic across their network to detect security exploits – and they need the right solutions in place to help them respond quickly. They must be aware of their current security posture – identifying attack vectors and employing security solutions to resolve any vulnerabilities or other risks to the business. This will include understanding security best practices and the latest standards and regulations related to their online business.

“With the increase in exploits, organisations must also ensure their security solution provides the ability to make critical decisions fast to prevent any downtime. With the correct approach to cybersecurity, brands can ensure their services run smoothly.”

Read more:
BA’s UK staff and Boots hit by cyber security breach with bank details exposed

Advertisement

    You May Also Like

    Investing

    RevisingTheBankSecrecyAct_NorbertMichelAndJenniferSchulp_CMFAWP007   The post Revising the Bank Secrecy Act to Protect Privacy and Deter Criminals (CMFA Working Paper No.007) appeared first on Alt-M.

    Investing

    Recently, an investment advisor and Bitcoin proponent tweeted the claim that “[f]or most of human history” the “[s]eparation of money and state was the...

    Business

    Rollee enables worker’s to share their professional data, spread over one or more financial platforms. Ali Hamriti, CEO and Co-Founder of Rollee, is on...

    Business

    The energy crisis means that as the price of wholesale commercial energy hits an unprecedented high, businesses must pay notably more for their energy...

    Disclaimer: successfuldealnow.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

    Copyright © 2024 successfuldealnow.com | All Rights Reserved