security on BAEC site/account
#1
Original Poster
Join Date: Jun 2006
Programs: BD,Skyteam,QF
Posts: 541
security on BAEC site/account
Just wondering if anyone else got an email apparently from BAEC saying a/c was hacked and to follow link to change pwd?
As I write this, it seems even more dubious, but I haven't been near my account for a couple of years. Probably phishing. But just not quite sure.
As I write this, it seems even more dubious, but I haven't been near my account for a couple of years. Probably phishing. But just not quite sure.
#2
Join Date: Jan 2013
Location: London
Programs: BA Gold, IHG Platinum, Accor Gold
Posts: 1,019
If you look at the BAEC forum on here, you'll read that a few people have recently had issues where their BAEC accounts have been hacked and Avios bookings made fraudently. The email you've received sounds genuine and consistent with what is being reported on the BAEC forum.
http://www.flyertalk.com/forum/briti...os-hacked.html
http://www.flyertalk.com/forum/briti...os-hacked.html
#3
Original Poster
Join Date: Jun 2006
Programs: BD,Skyteam,QF
Posts: 541
Thanks. I got on to my account and all my avios have gone.
#4
Join Date: Jan 2013
Location: London
Programs: BA Gold, IHG Platinum, Accor Gold
Posts: 1,019
Can you see from your booking history what they've been used for / where they've gone? It sounds like (from the thread above) that you should be able to at least claim them back from BA. Not a nice thing to experience though!
#5
FlyerTalk Evangelist
Join Date: Nov 2011
Location: Brighton. UK
Programs: BA Gold / VS /IHG Diamond & Ambassador
Posts: 14,197
(I've alerted a mod to move this to the BAEC board thread on the same topic)
#6
Original Poster
Join Date: Jun 2006
Programs: BD,Skyteam,QF
Posts: 541
The missing avios were taken on 20th, under a heading 'ex gratia'. This is the only movement on the account, as I was 'saving' them for a trip to Australia once my health is up to it. (nearly there).
Today, having changed my password on the account, I went back in to check if the avios had returned, only to discover from various messages that my email address is no longer the one associated with the account, and later, that the membership number is not recognised. It could be that they have been de-activated due to the problem. I hope so.
#7
Ambassador: Emirates Airlines
Join Date: Sep 2004
Location: Manchester, UK
Posts: 18,615
It does sound like BA have been compromised in some way, but they are not being particularly upfront about it (blaming a 3rd party site). it's affected a number of people on FT.
#8
Moderator: UK and Ireland & Europe
Join Date: Jan 2003
Location: Biggleswade
Programs: SK*G, Lots of Blue Elsewhere
Posts: 13,611
Moving to the BAEC forum to join the other discussions on this topic. Please continue to follow this discussion in the BAEC forum.
stut
Moderator
UK & Ireland
stut
Moderator
UK & Ireland
#9
Join Date: Feb 2007
Location: Here or there abouts...
Programs: BA LTG, Defender of the turnip.
Posts: 708
BTW an ex-gratia deduction may actually mean that your account is being audited. However, if your account number isn't being recognised I'd recommend a call to your BAEC service centre!
#10
Join Date: Jun 2008
Location: GLA
Programs: BA Silver
Posts: 2,962
OP says he hasn't been near his account for a couple of years - depending on precisely how long that is, might be that his miles have expired due to lack of activity.
#11
Original Poster
Join Date: Jun 2006
Programs: BD,Skyteam,QF
Posts: 541
Update following check:-
My account was only opened in September 2012, with the transfer of my BD miles (100,000+), so I have until September to produce some activity on the account. A trip to Kildare Village seems to be the best thing, but I wonder if it will work, if the account is 'suspended'?
I wrote (snailmail) enclosing my most recent statement showing the avios and membership number, and sent an email on the 'UK only' page of customer service (no other option to send email). I got an email back saying they had forwarded my email to BAEC, but no other response yet. The a/c is still unusable.
Last edited by measures; Mar 28, 2015 at 8:45 am Reason: Update current position
#12
Original Poster
Join Date: Jun 2006
Programs: BD,Skyteam,QF
Posts: 541
The outcome
Well, my Avios are back in my account and I can access the account. This is the history of what happened.
1.I received an email, which told me that they were investigating a possible illegal access to the account. Scary stuff!
2. I changed my password and found all my avios seemed to be gone; after that the account became inaccessible, telling me that the membership number was not recognised.
3. I wrote by snailmail, sending a copy of my latest statement.
4. I received the same scary email again today. This time I was sure it was a phishing attempt, and phoned the BAEC overseas members access number. The automated message hung up on me 3 times , so I phoned the number for UK based members.
5. Was told that all the BAEC accounts are being audited, the email is genuine and to go ahead and change my password.
6. I did that, not expecting it to work, but it did. ^.The Avios are back in my account,
7. In the meantime, I spent some money in Kildare Village to make sure I keep the account open until I use the Avios. (at least this whole thing reminded me that I have to have some activity in the account every 36 months. )
Very unpleasant experience all round, and very annoying to realise it was just because they are doing an audit. What would be wrong with writing 'we are doing an audit, and while we do it, you account will be locked. If your account is in order, it will be unlocked again in x days, when we will ask you to change your password.'?
1.I received an email, which told me that they were investigating a possible illegal access to the account. Scary stuff!
2. I changed my password and found all my avios seemed to be gone; after that the account became inaccessible, telling me that the membership number was not recognised.
3. I wrote by snailmail, sending a copy of my latest statement.
4. I received the same scary email again today. This time I was sure it was a phishing attempt, and phoned the BAEC overseas members access number. The automated message hung up on me 3 times , so I phoned the number for UK based members.
5. Was told that all the BAEC accounts are being audited, the email is genuine and to go ahead and change my password.
6. I did that, not expecting it to work, but it did. ^.The Avios are back in my account,
7. In the meantime, I spent some money in Kildare Village to make sure I keep the account open until I use the Avios. (at least this whole thing reminded me that I have to have some activity in the account every 36 months. )
Very unpleasant experience all round, and very annoying to realise it was just because they are doing an audit. What would be wrong with writing 'we are doing an audit, and while we do it, you account will be locked. If your account is in order, it will be unlocked again in x days, when we will ask you to change your password.'?
#14
Moderator: British Airways Executive Club, Iberia Airlines, Airport Lounges and Environmentally Friendly Travel
Join Date: Jan 2003
Location: London, UK
Posts: 22,212
Thank-you measures for reporting back.
As we have a large thread covering similar experiences from other members, I'll close this thread so the discussion can continue in one place.
Prospero
Moderator: BA forum
As we have a large thread covering similar experiences from other members, I'll close this thread so the discussion can continue in one place.
Prospero
Moderator: BA forum