Press "Enter" to skip to content

ICO fines DSG for data breach

DSG Retail Limited (DSG) has been fined £500,000 by the Information Commissioner’s Office (ICO) for a cyberattack that may have affected as many as 14 million people between July 2017 and April 2018.

Malware on 5,390 tills at DSG’s Currys PC World and Dixons Travel stores is thought to have given cyber criminals unauthorised access to the details of 5.6 million payment cards used in transactions and the personal information of approximately 14 million people, including full names, postcodes, email addresses and failed credit checks, from internal servers.

DSG was found to have breached the Data Protection Act 1998 by having poor security arrangements, including inadequate software patching, absence of a local firewall and lack of network segregation and routine security testing.

In January 2018, the ICO fined Carphone Warehouse, which is part of the same company group, £400,000 for similar security vulnerabilities.

www.ico.org.uk

Please follow and like us:

Be First to Comment

Leave a Reply

2020