BA account hacked with 38000 missing Avios
May 10, 2024, 8:25 am
#1
Original Poster
Join Date: May 2024
Posts: 2
BA account hacked with 38000 missing Avios
Been a loyal customer for the last couple of years and now a silver member, now with locked account and missing avois.
Wondering if anyone else had/is having the same issue. I have been receiving scam emails from 'British Airways Executive club' with email addresses ending @contact.ba.com and @contact.britishairways.com. People who sent those emails know my last name, BA account number and avois points. After suspected that my password is compromised, I tried to log in to my BA account without success, also tried resetting the password and the password resetting email showed my remaining avois which is 73, I had way more last time I checked.
Called BA and they told me my account is 'double locked' due to suspicious activity. Also told me that my avois were transferred to a Nectar account, of course I did not receive any email notification regarding the Nectar transfer or the locked account, BA customer service also cannot send me an email for confirming all these. The gentleman over the phone said 'please wait until the investigation is over' and cannot tell me when this can be over.
I am not sure what's going to happen next, can anyone advise?
Wondering if anyone else had/is having the same issue. I have been receiving scam emails from 'British Airways Executive club' with email addresses ending @contact.ba.com and @contact.britishairways.com. People who sent those emails know my last name, BA account number and avois points. After suspected that my password is compromised, I tried to log in to my BA account without success, also tried resetting the password and the password resetting email showed my remaining avois which is 73, I had way more last time I checked.
Called BA and they told me my account is 'double locked' due to suspicious activity. Also told me that my avois were transferred to a Nectar account, of course I did not receive any email notification regarding the Nectar transfer or the locked account, BA customer service also cannot send me an email for confirming all these. The gentleman over the phone said 'please wait until the investigation is over' and cannot tell me when this can be over.
I am not sure what's going to happen next, can anyone advise?
May 10, 2024, 9:17 am
#2
Moderator, Iberia Airlines, Airport Lounges, and Ambassador, British Airways Executive Club
Join Date: Feb 2010
Programs: BA Lifetime Gold; Flying Blue Life Platinum; LH Sen.; Hilton Diamond; Kemal Kebabs Prized Customer
Posts: 64,186
Welcome to Flyertalk and welcome to the BA forum.
Unfortunately this is something that does get reported here every so often, there is clearly quite an industry out there stealing Avios. From past reports, and to set expectations, it may take 2 - 3 weeks before BA reply to you on this. When they do, it may have very little details about what has happened or what they are doing, merely advice on how to re-enable your account.
Unfortunately this is something that does get reported here every so often, there is clearly quite an industry out there stealing Avios. From past reports, and to set expectations, it may take 2 - 3 weeks before BA reply to you on this. When they do, it may have very little details about what has happened or what they are doing, merely advice on how to re-enable your account.
May 10, 2024, 9:26 am
#3
Moderator: British Airways Executive Club
Join Date: Nov 2010
Location: TPA/ABZ
Programs: BA Lifetime Gold. GGL/CCR.
Posts: 13,310
Just a note to add that contact.ba.com and contact.britishairways.com are valid British Airways subdomains. If you have emails from those addresses they will be from BA which is why they know your personal details such as your name and Avios amounts. It's possible that the emails were triggered through fraudulent activity. What was in those emails?
May 10, 2024, 11:49 am
#4
Join Date: Feb 2016
Programs: BAEC GGL
Posts: 860
Just a note to add that contact.ba.com and contact.britishairways.com are valid British Airways subdomains. If you have emails from those addresses they will be from BA which is why they know your personal details such as your name and Avios amounts. It's possible that the emails were triggered through fraudulent activity. What was in those emails?
Best advice: use a password manager (I used 1Password - no affiliation). It syncs between devices, your password will be individual per web site (so if one web site is compromised, people won't be able to use your password on other web sites - trying randomly with the same email address), and moreover as it enters the password for you, it substantially reduces the likelihood of you mistakenly entering your password on something that looks like the BA web site but isn't.
May 10, 2024, 12:01 pm
#5
Join Date: Aug 2013
Posts: 8,830
I wouldn't rely on this. Yes "contact.ba.com and contact.britishairways.com are valid British Airways subdomains", but the statement "If you have emails from those addresses they will be from BA" is false. It is trivially easy to forge a From address on an email. It has all the security of the sender address on a physical letter. On the other hand if they know your personal details, that itself is a very good sign that the communications are genuine.
May 10, 2024, 12:31 pm
#6
Join Date: Apr 2017
Programs: BA Silver
Posts: 1,400
To offer some reassurance to the OP - I had a large number of Avios used fraudulently. BA locked my account for audit for about 2 weeks. Then I received an email for me to reset the password and login, and my missing Avios had been reinstated.
May 11, 2024, 6:44 am
#7
Join Date: Dec 2006
Posts: 226
Good to hear that BA has reinstated some stolen miles.
However given the value of some of our Avios accounts (and more importantly the many years it has taken us to accrue that value!) surely it is time that BA offered 2-factor authentication for their account logins?
However given the value of some of our Avios accounts (and more importantly the many years it has taken us to accrue that value!) surely it is time that BA offered 2-factor authentication for their account logins?
May 11, 2024, 7:00 am
#8
Ambassador, British Airways; FlyerTalk Posting Legend
Join Date: Apr 2012
Location: Leeds, UK
Programs: BA GGL/CCR, GfL, HH Diamond
Posts: 43,267
Two Factor Authentication (2FA) added to Executive Club login
May 11, 2024, 7:12 am
#9
Join Date: Dec 2006
Posts: 226
Interesting. But the rollout doesn't seem to have reached me.
Under "My Executive Club Menu" > "Your [sic] Executive Club profile" > "Login details" > "Update login details" there is no mention of 2FA; I can only change my password.
Also down the bottom of the page there is a link "Website security" which lists security suggestions and does not mention 2FA, so I guess they don't believe in it themselves :-)
-- edited to add:
Ironically while sending this, BA has just emailed one of my family members saying "it's time to set up two-factor authentication". The email contains a link which generates an error "Too many redirects occurred". Sigh.
Under "My Executive Club Menu" > "Your [sic] Executive Club profile" > "Login details" > "Update login details" there is no mention of 2FA; I can only change my password.
Also down the bottom of the page there is a link "Website security" which lists security suggestions and does not mention 2FA, so I guess they don't believe in it themselves :-)
-- edited to add:
Ironically while sending this, BA has just emailed one of my family members saying "it's time to set up two-factor authentication". The email contains a link which generates an error "Too many redirects occurred". Sigh.
Last edited by SP0; May 11, 2024 at 7:27 am