Fortune reports British Airways had a previously undiscovered vulnerability in its data security that potentially exposed customers’ private information. Cybersecurity firm Wandera found that the airline’s check-in links, which include passenger details, such as last names and confirmation numbers in the URLs, are unencrypted. “We take the security of our customersâ€™ data very seriously. Like other airlines, we are aware of this potential issue and are taking action to ensure our customers remain securely protected,” a British Airways representative said. Also in the U.K., facial-recognition images, fingerprint scans and other personal information belonging to 1 million people were found on an unsecured public database used by police and banks. Meanwhile in the U.S., fast-food chain Sonic got final approval for a $4.3 million settlement related to a 2017 credit breach.