golfmad

This popped up on my Safari Start Page for me today.

My British Airways password is complex and unique and stored in my 1Password account. I have not yet been able to track down the source of the leak as I don't use my email address as my username and most sites require a search based on the email address.

Has anyone else seen this something similar in the last few days?



I have changed my password.

guv1976

Could this have been a phishing attempt? I see that the pop-up has a "re-secure your account" link.

golfmad

I don't think so. It's a security feature in Safari itself. That said, I didn't use their link but went to the real website and changed my password. When I logged in I could see all my account details, Avios and lifetime tier points which were all correct.

LCY8737

You can check https://haveibeenpwned.com/ to see if your account has been included in data breaches.

If I were you I'd change that password. Even if it is complex, the fact that it showed up in a previous breach makes it less secure.

1P

Posts purporting to come from credit card issuers, banks and others claiming that you need to reconfirm your security details are an almost daily occurrence these days. This Safari example is just another one. The tricksters are now casting their nets wider in the hope that some people will be fooled. Utility companies, local council garden waste, your internet company..... you name it, someone has tried it.

The answer is to ignore and delete them, and certainly never to click on a link in such an email.

Ladyfliestheredwhiteandblues

9 out of 10 calls to my landline are scams and a much higher proportion of all electronic communication, mostly caught by rules, filters and security software. It’s just how the world is sadly. However I think OP did the right thing - changing the password but not via the ”helpfully” provided link.

trolleymusic

Yeah, the links in the Safari home page alerts like this take you to the site of the compromised account, so in this case britishairways.com to give you a little push to change your password.

I think that's really weird golfmad - if it's a 1Password generated password then it's going to be properly unique, so this means that there's been a leak of plaintext passwords from BA. They're not necessarily going to have the email stored next to them, but all the details I can find about the known BA data breach are that it included "customer details", nothing about passwords 😕

ModestPointsCollector

I've just tried to get in this morning and can't get in the BAEC through the main site at all!

Safari does have this built in warning but the UI for could be improved massively by not putting in a suspicious link. Not sure how, maybe by telling you go to keychain and go to the change password page of the website instead of just the link.

As far as I know, the check doesn't align the username with your password, it just looks to see if that password has been in any of its leak sources anywhere, not necessarily against your username. For the security conscious, it doesn't pass/check full plain text passwords, I assume there's some cryptgraphic hashing or similar used. But the best course of action is what you've done and to just change your BA password to a new complex password.

JD1905

Went to login this morning and also unable to do so... the Circus continues.

Tobias-UK

I’ve logged in with no issue this morning.

ModestPointsCollector

It appears to be working now, it failed a number of times just before 10am, the website asked me if i had an OnBusiness account at one point, and then another failed login it put up a message about an upgrade.

poplarflyer

Yes - exactly the same happened to be this morning

JD1905

Got in... but went to search for flights and got this.

"There is currently no access to your account while we upgrade our system. Please visit the information page to find out how this may affect you. We apologise for any inconvenience caused and thank you for your patience."

When I clicked the link to visit the information page I got a "Page not found" error.

babyg_wc

#METOO - but seems to be working now

golfmad

Yes, that was the first site I looked at but the main search facility only checks against email addresses or phone numbers and my details are not listed. I am currently downloading the full set of passwords from that site in order to run a search there.

As I said in post 1 that was the first thing I did.