Mystery British Airways IT Failure

Uploaded on 2017-06-02 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Transport & Travel

The IT shutdown that led to chaos for British Airways was caused by an “uncontrolled return of power” following an outage that physically damaged servers at its data centre, the airline has said.

Experts have questioned British Airways’ claim that this weekend’s catastrophic IT failure was down to a “power surge”, as the company’s chief executive has claimed.

The airline industry is notorious for running outdated infrastructure long after standards have improved. In December, for instance, it was revealed that passenger booking systems used by multiple airlines were easy prey for hackers.

About 75,000 passengers were affected as BA flights were cancelled following the incident on Saturday 27th May morning. The carrier was unable to resume a full schedule until Tuesday 30th and many passengers are still without their luggage.

BA was accused of greed after the GMB union said the issue could have been prevented if the airline had not cut the jobs of “hundreds of dedicated and loyal” IT staff and contracted the work to India last year.

The cause of the initial power outage and the subsequent surge has not yet been revealed. “There was a loss of power to the UK data centre which was compounded by the uncontrolled return of power which caused a power surge taking out our IT systems. So we know what happened, we just need to find out why,” the airline said in a statement.

“It was not an IT failure and had nothing to do with outsourcing of IT, it was an electrical power supply which was interrupted.

“We are undertaking an exhaustive investigation to find out the exact circumstances and most importantly ensure that this can never happen again.”

Some experts predict BA could face a bill of over £100m in compensation costs.

The airline said it will “comply with all of the relevant EU compensation regulations”, including hotel accommodation, transport to and from hotels, meals and telephone calls.

It has added extra staff to its customer relations department to help process payments.

The airline said all of the delayed bags had been processed at Heathrow and were on their way to customers around the world but admitted “it may take some time to complete the process”.

BA’s parent company, IAG, saw shares initially fall by about 4% in the first day of trading in London after the outage occurred.

On Saturday night, travellers spent the night sleeping on yoga mats spread on terminal floors after BA cancelled all flights leaving Heathrow and Gatwick.

BA’s chief executive, Alex Cruz, said the outsourcing of jobs was not to blame for the “catastrophic” power failure.

Guardian:     Guardian:

You Might Also Read:

UK Airports & Nuclear Power Stations On Cybersecurity Alert:

Flight Ban On Laptops 'sparked by IS threat':

Changing Other People's Flight Bookings Is Just Too Easy:

 

 

« Algorithms: An Unseen Influence On The UK Election
WannaCry Outbreak Is Just A Tip Of An Iceberg »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Redscan Cyber Security

Redscan Cyber Security

Redscan Cyber Security is a Managed Security Services Provider (MSSP) that enables businesses to effectively manage their information security risks.

Zanasi & Partners

Zanasi & Partners

Zanasi & Partners is a security research and advisory company active in the EU and MENA areas. Services focus on technology solutions.

GuardKnox

GuardKnox

GuardKnox protects the users of connected vehicles against threats that can endanger their physical safety and the safety of their personal information.

NRI Secure Technologies

NRI Secure Technologies

NRI SecureTechnologies is a Cybersecurity group company of the Nomura Research Institute (NRI) and a global provider of next-generation Managed Security Services and Security Consulting.

SAS Institute

SAS Institute

SAS is a leader in business analytics software and services providing solutions for a wide range of critical business areas including risk management, compliance and fraud prevention.

Information Technology Industry Development Agency (ITIDA)

Information Technology Industry Development Agency (ITIDA)

ITIDA has two broad goals: building the capacities of Egypt’s local information and communications technology (ICT) industry and attracting foreign direct investments to boost the ICT sector.

Norsk Akkreditering

Norsk Akkreditering

Norsk Akkreditering is the national accreditation body for Norway. The directory of members provides details of organisations offering certification services for ISO 27001.

DNX Ventures

DNX Ventures

Based in Silicon Valley and Tokyo, DNX Ventures is an early stage VC for B2B startups in sectors including Cybersecurity.

Etonwood

Etonwood

Etonwood specialises in infrastructure and vendor technology recruitment in areas including cloud platforms, cyber security and service management.

Data Privacy Office (DPO)

Data Privacy Office (DPO)

Data Privacy Office is a company that specializes in privacy and personal data protection, following the highest standards in its sector.

Veratad Technologies

Veratad Technologies

Veratad Technologies, LLC is a world class provider of online/real-time Identity Verification, Age Verification, Fraud Prevention and Compliance Solutions.

BlueHalo

BlueHalo

BlueHalo is purpose-built to provide industry capabilities in the domains of Space Superiority and Directed Energy, Missile Defense and C4ISR, and Cyber and Intelligence.

CyberQP

CyberQP

CyberQP (formerly Quickpass Cybersecurity) provide Privileged Access Management built for MSPs. Our system is designed to reduce ransomware and social engineering attack risks.

Symbol Security

Symbol Security

Through situational learning, simulations, and a gamified user experience, Symbol strengthens the cyber awareness of employees and helps companies lower cyber risk.

Sendmarc

Sendmarc

Sendmarc automates the process of protecting your domain from being used in email impersonation and phishing attacks.

Netsurit

Netsurit

Managed IT, Cloud, and Security Services. Netsurit is Your IT Innovation and Digital Transformation Accelerator.