• UKFast looks back at 2018’s biggest data breaches

        • Throughout 2018, British firms have faced an increase in both the volume and sophistication of cyber-attacks. Reflecting on the evolution of threats over the year, cybersecurity experts convened at an event at UKFast in Manchester to analyse the year’s biggest breaches and discuss what UK businesses can learn from them.

          Morrison’s

          Insider threats are the most prevalent type of attack facing businesses today, experts say.

          In November 2018, Morrison’s supermarket chain was ruled vicariously liable for the breach of nearly 100,000 employees’ personal data, leaked three years before by a disgruntled worker.

          Annabelle Gold-Caution, Associate at European law firm Fieldfisher said, “the risk of business owners being held responsible for data breaches caused by employees must be considered in security policies, and mitigated by implementing strong data access permissions.”

          Experts recommend that business owners implement policies which allow access to company data on a ‘least-privilege’ basis, cutting the number of people with access to critical data and reducing the risk of unauthorised data sharing.

          Facebook

          Reputational damage is a serious side effect suffered by many attacked organisations. Facebook reported two major data breaches in 2018 caused by exploited network vulnerabilities.

          The firm’s reputation has suffered irreparable damage as a result, with one in 20 Brits, and millions across the globe, reported to have deleted their accounts after the second breach was publicised.

          Paul Mason, IT Security, Education and Training Specialist at Secarma said, “when news of the second Facebook data breach came to light the company’s stock price fell 6 per cent in just two hours.”

          Although data can be retrieved with good disaster recovery strategies, reputations may not be as easily recovered. Businesses must keep networks up to date, patched and regularly tested to stay one step ahead of those willing to take advantage. 

          Lloyds TSB

          Showing that not all breaches are down to hackers, Paul also reflected on the Lloyds TSB case from April 2018, where TSB failed to securely move their banking app from one system to another.

          The transition prevented many users from accessing their own accounts and many were able to see details of other users’ accounts. As a result, leaked data was exploited by fraudsters posing as TSB investigators, with some TSB customers scammed out of £30,000.

          He added, “it’s not just leaked data that breaches GDPR legislation; Lloyds failed to provide their consumers with three basic data rights: availability, integrity and confidentiality. Businesses must ensure they’re protecting the data rights of their consumers at all times or face potential fines.”

          The extent of fines issued to the bank under GDPR legislation is yet to be confirmed.

          We will no doubt see a continued stream of high-profile cyber-attacks and data breaches in 2019. Will businesses learn from the misfortunes of companies in the public eye throughout 2018? Only time will tell.

          To find out when the next UKFast webinar is coming up, click here.

        • Stay up to date - Click here and register for FREE Channel Info online membership and enjoy unlimited access to a host of benefits including the exclusive members area of the website, downloadable business tools, current and back issues archive, priority breaking news alerts, weekly e news summary and the Channel Info app

        • Related Articles

        • UKFast opens campus for festive film treat

          UKFast opens campus for festive film treat

          Friday 23rd Nov 2018
          This Christmas, UKFast is opening up its 500-seat auditorium for a one-off screening of festive favourite Elf, starring Will Ferrell, for local youngsters. Drinks, popcorn and a festive atmosphere will all be provided inside UKFast’s new audit...Read More...
          UKFast achieves ISO 27017 compliance

          UKFast achieves ISO 27017 compliance

          Friday 2nd Nov 2018
          UKFast has achieved the latest cloud security standard, ISO 27017 which provides guidance on security aspects of cloud computing, recommending the implementation of cloud-specific information security controls, demonstrating the employment of best pr...Read More...
          UKFast CEO’s six tips to better cybersecurity

          UKFast CEO’s six tips to better cybersecurity

          Tuesday 2nd Oct 2018
          This week marks the start of Cybersecurity Month, 31 days dedicated to raising UK cybersecurity awareness and helping to secure the internet.To mark the event, UKFast and Secarma CEO Lawrence Jones MBE is publishing his top six cybersecurity tips to ...Read More...
                • About Us

                  Channel Info is the leading source of business news and information for the office dealer and reseller market. Our multi-platform approach delivers relevant, engaging and focussed content via our main printed magazine, supplements, website, digital editions, apps, newsletters and bespoke communications with an unrivalled reach across the industry. A highly trusted and respected brand for many years, the team behind Channel Info has over 60 years experience collectively in the office products, furniture, equipment and technology markets Channel Info continues to develop and adapt in order to meet the changing information needs of its readers.

                  For our latest Media packs and more details on our range of services click here

                • View Latest Issue