Originally Posted by
Globaliser
This appears to be new information, and sadly undermines the confidence that we had previously been building that stored card details and Paypal transactions might have been safe.
Clearly the problem isn't what BA stores in their data warehouse, it was the payment process itself, probably en route to the banking systems where there was a breach. And all data in that payment transaction is at risk. So stored cards are OK, except if used in between the two dates in question.