UK’s Carphone Warehouse fined nearly $540k for 2015 hack

Jan 11, 2018 · techcrunch.com

144710269

The UK’s data watchdog has handed mobile phone retailer Carphone Warehouse a £400,000 fine — just shy of the £500k maximum the regulator can currently issue — for security failings attached to a 2015 hack that compromised the personal data of some three million customers and 1,000 employees.

Compromised customer data included: Names, addresses, phone numbers, dates of birth, marital status and, for more than 18,000 customers, historical payment card details. While exposed records for some Carphone Warehouse employees, including name, phone numbers, postcode, and car registration details.

Commenting on the penalty in a statement, the UK’s information commissioner Elizabeth Denham said: "A company as large, well-resourced, and established as Carphone Warehouse, should have been actively assessing its data security systems, and ensuring systems were robust and not vulnerable to such attacks.

"Carphone Warehouse should be at the top of its game when it comes to cyber-security, and it is concerning that the systemic failures we found related to rudimentary, commonplace measures."

Read Complete Article

RT @OpenGovInt: Registration now open for the @OpenGovInt #LinkedData conference @tudelft on Nov 22nd. Hear from @brinkwoman & Darren Barne…

We’re not just getting tough on crime, we’re getting tough on its root causes. Our new Violence Reduction Unit wi… https://t.co/C1eNBzIROA

#TechX365: The UK raised over $2 billion in #venturecapital investment last quarter, but #Brexit remains a concern.… https://t.co/oOiiCnsl5q