The airline this week confirmed that from August 21 until September 5, "the personal and financial details of customers making or changing bookings on our website and app were compromised".
"The personal and financial details of customers making bookings on our website and app were compromised", it said.
British Airways has warned customers of a data breach that has resulted in the credit card details - including full card verification value (CVV) digits - of some 380,000 customers being exposed to attackers as-yet unknown.
BA said the breach had now been resolved, its website was "working normally", and it is was communicating with affected customers.
Police and relevant authorities have meanwhile been notified.
Cruz said the carrier was "deeply sorry" for the disruption caused by the attack which was unprecedented in the more than 20 years that BA had operated online. "We take very seriously the protection of our clients 'data" - are his words in the statement.
This is not the first time the airways has been affected.
BA took out full-page adverts in the United Kingdom newspapers on Friday to apologize, while shares in parent group IAG slid three percent in the early morning London deals.
Air Canada has said credit card data was encrypted and protected from a breach but Aeroplan numbers, passport numbers, birth dates, nationalities and countries of residence could have been accessed if users saved them in their account profile. The airline said it would manage any claims on an individual basis. However the 15-day breach did not involve travel or passport details and has been fixed, the airline added.
British Airways disclosed on September 7 that it was the victim of a data breach that exposed details on 380,000 customers.
The company discovered the breach this week.
Jenn Flowers*, an executive, said she was concerned over BA's vague wording in its warning email.
Those affected can expect a call from the company telling them their data was lost and they should contact their banks and follow advice. Customers who used either the website or the mobile app during the above time period are encouraged to contact their financial institution for advise.
He said: "On the positive side, companies are highly incented to improve the level of security monitoring they perform". The National Crime Agency and the National Cyber Security Centre are also reportedly investigating.