Saturday, December 02, 2017

UK Retail Data Breaches

Some people talk as if data protection and security must be fixed before May 2018 because of GDPR. Wrong. Data protection and security must be fixed now.

Morrisons (2014)


The High Court has just found Morrisons to be liable for a leak of employee data by a disaffected employee in 2014. (The perpetrator got eight years in jail.) 

http://www.theregister.co.uk/2017/12/01/morrisons_data_leak_ruling/
http://www.bbc.co.uk/news/uk-england-42193502

Sports Direct (2016)


A hacker obtained employee details in September 2016, but Sports Direct failed to communicate the breach to the affected employees.

https://www.theregister.co.uk/2017/02/08/sports_direct_fails_to_inform_staff_over_hack_and_data_breach/

CEX (2017)


Second-hand gadget and video games retailer Cex has said up to two million customers have had their data stolen in an online breach

http://www.bbc.co.uk/news/technology-41095162
https://uk.webuy.com/guidance/

Zomato (2017)


Up to 17 million users affected by data breach at restaurant search platform Zomato

https://www.infosecurity-magazine.com/news/zomato-breach-exposes-17-million/
https://www.zomato.com/blog/security-notice

Tesco Bank (2016)


Cyber thieves steal £2.5m

https://www.theguardian.com/business/2016/nov/08/tesco-bank-cyber-thieves-25m
https://www.theregister.co.uk/2016/11/10/tesco_bank_breach_analysis/
https://www.itproportal.com/features/lessons-from-the-tesco-bank-hack/



Related posts


The Smell of Data (December 2017)

No comments: