Data Breaches Archive
FBI reports for 2019 show BEC (Business email compromise) attacks generating far better returns for cyber criminals than ransomware. BEC attacks do not require the same level of technology or human resource as do ransomware attacks, nor do they generate …
It’s interesting to note that, amongst the far-reaching consequences that breached organisations face, an employee class-action lawsuit is one of the most recent to make headlines. Of course, from a GDPR perspective, data controllers are obliged to pay as much …
British Airways had a serious data breach in 2018 and, in 2019, the English High Court authorised a class-action lawsuit against BA, covering potentially 500,000 affected customers. Marriott’s acquisition, Starwood, had suffered a major data breach that started prior to …
The EU GDPR (General Data Protection Regulation) issues administrative fines for non-compliance. The higher-tier fine is up to 4% of an organization’s global turnover or €20 million (about $24 million), whichever is greater. Although they differ in content, all 50 …
TV Licensing has assured 40,000 TV licence-paying customers whose contact and bank details were intercepted on the TV Licensing website that “the risk is low”. Really? If the risk is low, why also warn the victims that they should …
There are now two law firms putting together class action lawsuits against BA under the provisions of Article 82 of the GDPR (General Data Protection Regulation), which entitles data subjects to financial compensation for non-financial damages. If the 380,000 customers …
New cybersecurity surveys continue to point at the two main challenges faced by most smaller businesses in terms of defending against cyber attack: They don’t know where they are vulnerable; and They don’t have the skills to close down the …
According to the recent ISBS 2013 Survey, 78% of large organisations were attacked by an unauthorised outsider last year (an increase from 73% the previous year), while 63% of small organisations were similarly attacked from outside – a big increase …
Cyber security costs money – but then, so does cyber insecurity – and the problem with data breach costs is that they are usually accompanied by even more expensive business disruption and reputation damage – often when you need it …
SANS has, for years, published and maintained the Top 20 Critical Security Controls (now in version 4.1). These 20 Critical Security Controls, whose origins go back beyond 2008, were implemented by the US State Department in 2009, leading apparently to …