Mystery British Airways IT Failure

Uploaded on 2017-06-02 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Transport & Travel

The IT shutdown that led to chaos for British Airways was caused by an “uncontrolled return of power” following an outage that physically damaged servers at its data centre, the airline has said.

Experts have questioned British Airways’ claim that this weekend’s catastrophic IT failure was down to a “power surge”, as the company’s chief executive has claimed.

The airline industry is notorious for running outdated infrastructure long after standards have improved. In December, for instance, it was revealed that passenger booking systems used by multiple airlines were easy prey for hackers.

About 75,000 passengers were affected as BA flights were cancelled following the incident on Saturday 27th May morning. The carrier was unable to resume a full schedule until Tuesday 30th and many passengers are still without their luggage.

BA was accused of greed after the GMB union said the issue could have been prevented if the airline had not cut the jobs of “hundreds of dedicated and loyal” IT staff and contracted the work to India last year.

The cause of the initial power outage and the subsequent surge has not yet been revealed. “There was a loss of power to the UK data centre which was compounded by the uncontrolled return of power which caused a power surge taking out our IT systems. So we know what happened, we just need to find out why,” the airline said in a statement.

“It was not an IT failure and had nothing to do with outsourcing of IT, it was an electrical power supply which was interrupted.

“We are undertaking an exhaustive investigation to find out the exact circumstances and most importantly ensure that this can never happen again.”

Some experts predict BA could face a bill of over £100m in compensation costs.

The airline said it will “comply with all of the relevant EU compensation regulations”, including hotel accommodation, transport to and from hotels, meals and telephone calls.

It has added extra staff to its customer relations department to help process payments.

The airline said all of the delayed bags had been processed at Heathrow and were on their way to customers around the world but admitted “it may take some time to complete the process”.

BA’s parent company, IAG, saw shares initially fall by about 4% in the first day of trading in London after the outage occurred.

On Saturday night, travellers spent the night sleeping on yoga mats spread on terminal floors after BA cancelled all flights leaving Heathrow and Gatwick.

BA’s chief executive, Alex Cruz, said the outsourcing of jobs was not to blame for the “catastrophic” power failure.

Guardian:     Guardian:

You Might Also Read:

UK Airports & Nuclear Power Stations On Cybersecurity Alert:

Flight Ban On Laptops 'sparked by IS threat':

Changing Other People's Flight Bookings Is Just Too Easy:

 

 

« Algorithms: An Unseen Influence On The UK Election
WannaCry Outbreak Is Just A Tip Of An Iceberg »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Indelible Data

Indelible Data

Indelible Data is an established information security and technology consultancy and a Cyber Essentials Certification Body.

Group-IB

Group-IB

Group-IB is a leading provider of solutions dedicated to detecting and preventing cyberattacks, identifying online fraud, investigating high-tech crimes, and protecting intellectual property.

ThreatConnect

ThreatConnect

ThreatConnect is an enterprise threat intelligence platform by Cyber Squared bridging incident response, defense, and threat analysis for InfoSec & DFIR teams.

OSIRIS Lab - NYU Tandon

OSIRIS Lab - NYU Tandon

The Offensive Security, Incident Response & Internet Security Lab (OSIRIS) is a security research environment where students analyze and understand how attackers take advantage of real systems.

Mitek Systems

Mitek Systems

Mitek's global mobile capture and identity verification technology optimizes the digital user experience for thousands of financial services organizations.

CounterCraft

CounterCraft

The CounterCraft Cyber Deception Platform fits seamlessly into existing security strategies and delivers high-end deception for threat hunting and threat detection.

High Wire Networks

High Wire Networks

High Wire Network’s Overwatch Managed Security Plaform-as-a-Service offers organizations end-to-end protection for networks, data, endpoints and users.

Ukrainian Special Systems (USS)

Ukrainian Special Systems (USS)

Ukrainian Special Systems (USS) is a state-owned commercial enterprise providing confidential communication, trust services and services in the field of information protection.

Sabat Group

Sabat Group

Sabat Group provide relationship-driven information security & cyber security recruiting services.

SpecterOps

SpecterOps

SpecterOps has unique insight into the cyber adversary mindset and brings the highest caliber, most experienced resources to assess your organizations defenses.

Terralogic

Terralogic

Terralogic is a software and IT services company, an expert in IoT, Cloud, DevOps, App development and Cybersecurity.

R-Tech

R-Tech

R-Tech GmbH manages the digital start-up initiative, whose goal is to build a sustainable start-up culture in the field of digitization throughout the Upper Palatinate district of Bavaria.

Information Services Group (ISG)

Information Services Group (ISG)

As a leading global research and advisory firm, ISG partners with our clients to determine a future vision, lead rapid change and realize the value of your digital investments at scale.

Lavabit

Lavabit

Lavabit's Dark Internet Mail Environment is a secure, open-source, secure end-to-end communications platform for asynchronous messaging across the internet.

JanBask Training

JanBask Training

JanBask Training is a dynamic, highly professional, global online training provider committed to propelling the next generation of technology learners with a whole new way of training experience.

CloudCoCo

CloudCoCo

CloudCoCo help UK businesses of all sizes and industries succeed by providing enterprise-grade technology at small-business prices.