Sopra Steria finds UK citizens want more secu... » London: Sopra Steria has revealed that UK citizens are keener than ever to use digital public servic... World’s top education experts to answer key q... » Education experts, Edtech entrepreneurs and an assortment of thinkers, analysts and administrators f... HAUD gives more value through its Traffic Audit ... » Singapore: HAUD has now established itself as a market leading SMS firewall provider, and through ex... 365squared launches 365analytics » Macau, China: 365squared introduced 365analytics to its portfolio of services. 365analytics is a rea... Checkpoint Systems deploys its EAS Solutions at ... » Checkpoint Systems has announced its partnership in implementing EAS pedestals and deactivation syst... Evander Direct wins commendation for uPVC window... » Evander Direct have been commended for their innovative uPVC cleaning process that dramatically help... Electrical Industries Charity to benefit from pr... » Thousands of pounds are set to be raised for good causes in the electrotechnical industry at the upc... Secure I.T. Environments achieves new internatio... » Data Centre World, London: Secure I.T. Environments Ltd has announced that it has achieved new inter... OKI upgrades wide format with new Teriostar Multif... » Egham: OKI Europe Ltd has launched two new wide format Teriostar multifunction printers designed to ... BSIA members push aggressively for cyber-security ... » BSIA members have pledged to lead the way in cyber-security education, Vigilance can report.


Talking Point Banner

The UK's largest sporting retailer, Sports Direct, reportedly suffered a data breach last year but has been accused of failing to tell its workforce that their personal details – including names, email addresses and phone numbers - may have been accessed by a hacker.

Lee Munson, security researcher at , says: ”Companies are breached all the time and, as unfortunate as that is, it is a likely risk of doing business these days, and one that cannot be avoided with certainty. What is controllable, however, is the way in which the breach is responded to.

“In the case of Sports Direct, the response appears to be woefully inadequate, leaving some 30,000 staff at risk of identity theft and other crimes.

“It’s bad enough that employees’ personal data was stored in an unencrypted form, but the fact that there was no disclosure to them for so long, despite contact being made with the Information Commissioner’s Office, is unforgivable.

“We can only hope that situations like this will be avoided in the future when the new EU GDPR regulations come into play as breaches will then need to be declared within 72 hours or else the company will be liable for massive fines.

“In the meantime, Sports Direct staff may be wondering why their employer fell victim to an attack that appears to have leveraged unpatched systems and a simple failure to store sensitive information in a secure manner.”