The Data Guardians Managing Director and lead consultant Matthew Lamb is a Certified Cyber Risk Management Practitioner. Get in touch with us to ask about how we can help you with your GDPR and Data Protection Act compliance.
Who’s getting it wrong?
Bodybuilding.com, the internet’s biggest online store and forum for fitness and bodybuilding enthusiasts with 30 million visitors per month, has disclosed a security breach that affected its IT systems. Staff are unsure whether it impacted customer data. A third-party security firm hired to help with their investigation has traced the breach to a phishing email its staff received in July 2018. Despite not knowing if the hackers accessed customer information the company has done the right thing by notifying all of its customers of the incident as a precaution. Read more here.
A snap survey of 156 schools and colleges across Britain has found some concerns:
- 52% believed they were not fully compliant with GDPR.
- 14% said they did not have a clear plan to become compliant.
- 75% said accidental loss by staff was the biggest threat to data.
Read more here.
According to research by the National Cyber Security Centre, ‘123456’ was the “most widely-used password on breached accounts” followed by ‘123456789’, ‘Qwerty’, ‘password’ and ‘1111111’. It’s worrying that so many people are using these easy to guess passwords. The NCSC recommend using three random but memorable words together or using a password manager to create long, random passwords. Read more here.
On Friday, more than 30 applications were submitted by lawyers for leadership positions in the class action brought over Marriott’s data breach in November. Read more here.
The UK Supreme court has given Morrisons permission to appeal the data breach class action brought against it. Read more here.