Cyber-attacks hit British Airways, Slack and Github
British Airways’ air-miles accounts, the work chat service slack and coding site Github have all been hacked in the latest wave of cyber-attacks.
Users of the car service Uber have also being complaining of issues, but the organisation has denied any evidence of a breach. Organisations with a confirmed hack have now notified users of the incidents.
Complaints about the air miles being stolen from the British Airway’s executive club scheme predate around two weeks, with one user stating their account had been used by another individual to book a hotel room in Spain, while others reported that their accounts had been wiped of all credit.
A British Airways spokesperson told the BBC: “This appears to have been the result of a third party using information obtained elsewhere on the internet, via an automated process, to try to gain access to some accounts. We would like to reassure customers that, at this stage, we are not aware of any access to any subsequent information pages within accounts, including travel histories or payment card details.”
The US firm slack enables employees to speak to each other as an alternative to emails. The organisation has said they believe the hackers have accessed a database containing usernames, Skype IDs and email addresses. The website added that passwords, which gave the users access to posted information were protected by encryption that made it computationally infeasible for hackers to break. The company has since added a two-factor authentication method as an additional layer of security and notified any affected users.
Hackers have tried to force the GitHub offline by flooding the website with traffic. More than 8 million software developers currently use the coding website.
The website stated on its official blog “we are currently experiencing the largest DDoS (distributed denial of service) attack in github.com’s history. The attack began around 2AM UTC on Thursday, March 26, and involves a wide combination of attack vectors.” The traffic was directed to two GitHub pages that linked to copies of websites banned in China.