The target: British Airways, the largest airline in the United Kingdom.
The take: Payment card information for more than 380,000 customers.
The attack vector: By injecting altered scripts into third-party webpages called during the payment and check-out process, malicious actors performed a digital ‘card skimming’ attack, stealing payment card information from BA’s clients from August and September of 2018.