British Airways has revealed that a further 185,000 website users have been hit by a September data breach.
However, the airline said it has also down its initial estimates of customers originally identified in the breach on 6 September, from 380,000 to 244,000. The total number of users affected in both hacks now stands at 429,000.
The earlier breach affected British Airways customers making reward bookings between 21 April and 28 July this year using a payment card.
In a statement the carrier said: “Since our announcement on 6 September, 2018 regarding the theft of our customers’ data, British Airways has been working continuously with specialist cyber forensic investigators and the National Crime Agency to investigate fully the data theft. We are updating customers today with further information as we conclude our internal investigation.
“The investigation has shown the hackers may have stolen additional personal data and we are notifying the holders of 77,000 payment cards, not previously notified, that the name, billing address, email address, card payment information, including card number, expiry date and CVV have potentially been compromised, and a further 108,000 without CVV.
“The potentially impacted customers were those only making reward bookings between 21 April and 28 July, 2018, and who used a payment card.
“While we do not have conclusive evidence that the data was removed from British Airways’ systems, we are taking a prudent approach in notifying potentially affected customers, advising them to contact their bank or card provider as a precaution. Customers who are not contacted by British Airways by Friday 26 October at 1700 GMT do not need to take any action.
“In addition, from the investigation we know that fewer of the customers we originally announced were impacted. Of the 380,000 payment card details announced, 244,000 were affected. Crucially, we have had no verified cases of fraud.
“We are very sorry that this criminal activity has occurred. As we have been doing, we will reimburse any customers who have suffered financial losses as a direct result of the data theft and we will be offering credit rating monitoring, provided by specialists in the field, to any affected customer who is concerned about an impact to their credit rating.”