Eurostar Resets All Customers’ Passwords After Attempted Security Data Breach

Eurostar has reset the passwords to some of their customers’ online accounts after discovering an attempted data breach. The attempted attack, which occurred between the 15th and 19th of October, has made Eurostar take “precautionary measures” to ensure that any compromised accounts are now secure.

The accounts that were targeted by the hackers have had their passwords reset, with other customers being told that their accounts are blocked and that they need to change their password.

 

 

The company has however confirmed that the credit card information and payment details of these accounts were not compromised, as Eurostar “deliberately never store any bank card information, so there is no possibility of compromise to credit card or payment details.”

If you’re a Eurostar customer, it will be difficult to know whether you have been directly affected by the attack. Some customers have been contacted via email and informed that their account was logged into during this period, and that if it was the account holder didn’t log in between these dates, then there’s a chance that their account was accessed by “unauthorised attempt.”

This isn’t the first time that a cyber-attack has been carried out on a travel company in recent weeks, as Airline Company British Airways was also the victim of a cyber-attack which saw the information of over 380,000 customers compromised. In November, British Airways also discovered that the information of an additional 185,000 customers was also stolen. You can find out more about the British Airways attack in our article here.

One security tip that the experts here at 39 Degress would suggest is that you change your passwords occasionally. Most of all cyber security attacks involve a weak or stolen password, and changing your passwords regularly can help avoid the possibility of a breach. If a hacker was to gain access to one of your passwords, chances are, they will have access to multiple accounts.

Changing your passwords is just one of the ways that you can improve your cyber security capabilities, and here at Ghost, we provide a diverse range of Cyber Security Services to businesses that want to help maintain and ensure GDPR compliance.

We’ll ensure that your business complies with the latest regulatory requirements and we’ll even improve the Cyber awareness culture throughout your organisation, with certified staff awareness training. This will teach your staff about the importance of cyber security and their responsibilities in following security procedures.

For more information on cyber security and how you can improve the culture throughout your business, get in touch with 39 Degress on 01279 800039 and discuss your current security processes with one of our cyber experts. Alternatively, you can find out more about our cyber services on our Cyber Security page here.

British Airways Data Breach – 185,000 Additional Customers Have Card Details Stolen

Back in September 2018, British Airways announced that they had been the victim of a cyber-attack, which saw hackers skim data of over 380,000 individuals through their website and mobile application.

Now, in November, British Airways owner IAG has followed up their announcement by saying that the “hackers may have stolen additional personal data”. BA believes that the card payment details of an additional 185,000 people have been stolen and that they are contacting two groups of customers that were not previously notified of the breach.

cyber attack british airways

Within the additional 185,000 affected by the attack, includes 77,000 card payment holders, whose name, billing address, email address and card payment details were compromised, with this including their card number, expiry date and CVV (Card Verification Value) – the 3 digit number on the back of the card. The remaining 108,000 also had their personal information stolen, apart from their CVV number.

The people who were a victim of this data breach were those who made a reward booking between April 21st and July 28th 2018, who used a payment card.

This data breach has resulted in BA facing a fine of approximately £500 million, with the ICO now investigating the attack.

Under GDPR (General Data Protection Regulation), less severe breaches can result in a maximum monetary penalty of €10 million, or 2% of a company’s annual revenue, whichever is more. In more severe cases, the maximum fine is €20 million, or 4% of a company’s annual revenue.

If you handle the personal data of your customers, it’s vital that your business is GDPR compliant. If you need help in becoming GDPR compliant, 39 Degress will help you achieve compliance, and will improve the way that you handle your customer’s PII (Personally Identifiable Information).

We are data protection experts here at Ghost, and have already helped hundreds of organisations achieve compliance. We can offer Consultancy, Assessment and Compliance services to ensure that you avoid a hefty fine for being non-compliant.

For more information on how to take your first steps towards GDPR compliance, get in touch with 39 Degress on 01279 800039 and speak with one of our data security professionals. Alternatively, you can find out more by visiting our GDPR compliance page.

Protecting Your IT System

Protecting Your IT System

Back when computer technology was in its infancy, most people believed automation and computerisation would revolutionise the way we work and do business. And it did, but not in the way a lot of us expected. Computers were supposed to be able to take over a lot of the work, and leave us with either increased leisure time or an exponential increase in unemployment, depending on whether you were looking at it as a ‘glass half full’ or a ‘glass half empty’ person. Of course, for the most part this hasn’t been the case- we still have as much to do as before, we just do it more efficiently, and the arrival of computation provided a thriving job market in IT services.

it support services

These days it’s almost impossible for a business to entirely eschew the allure of computer technology, and any business that tried would find severe problems communicating with customers, suppliers and other businesses.

cloud storage for small businesses

Of course, this means that everyone now needs to make sure they have good IT support, whether on- or off-site. But there are certain common sense rules for best practice, which can help you avoid problems yourself before you have to get them involved.

it support essex

There are two pieces of advice in particular which are utterly invaluable – and they apply as much to the home user as the business user. First of all, and this shouldn’t even really need to be said in this day and age – always back everything up. An off-site cloud solution can be the best way to do this, because even if your whole system goes down your data is still safe. Which awful possibility brings us to the second, and perhaps most important – allow for redundancies in your system in order to avoid creating a single point of failure. Something will always go wrong, and it’s vital to make sure the rest of your system can pick up the slack when it does.

For everything else, and even for help with these, there is Ghost. Whether you want a fully-managed IT support service or a pay-as-you-go ad hoc model, we can help with all your IT needs. Cloud storage, security, ensuring compliance with regulation- whatever you need, Ghost can do it for you.

Contact us today to discuss your business IT requirements, and we’ll take the tech strain and let you get back to worrying about your bottom line. Call 01279 800039, or fill in our online contact form.