250 million customer records compromised by Microsoft. Mis-configured database.
February 1, 2020
September 9, 2020
£60,000 fine notice for not performing regular penetration test.
July 27, 2017
A recent fine by Information Commissioner's Office emphasises regular penetration testing by business of all sizes to protect customer data. An SME was fined £60,000 after personal data relating to over 26,000 customers was compromised by a cyber-attack in 2014. The ICO found that the organisation in question failure to identify weaknesses across its infrastructure led to, amongst other things, its website being vulnerable to common hacking techniques such as SQL injection, which ultimately led to the a breach.