G4S Africa supports small business development thr... » The latest product in the G4S Deposita range is a smart safe system called mini-pay that holds up to... Commissioner's statement following incident in Man... » This is an utterly appalling attack. My thoughts are with the people of Manchester as they try to co... UPDATE: Policing events in the Capital » Following the horrific terrorist attack in Manchester last night, in which 22 people were killed and... Statement from Assistant Commissioner » Statement from Assistant Commissioner Mark Rowley, Head of National Counter Terrorism Policing: The... Met intensifies policing activities in London fol... » The Metropolitan Police Service (MPS) has increased police numbers and operations across the Capital... OF FOOLS OF THE MIDDLE BELT, ONE NORTH AND PASTORA... » Please visit also: www.scorpionnewscorp.com SERIES: BUHARISM AND THE FIERCE URGENCY OF NOW A treat... Home Secretary’s statement on the Manchester attac... » I know that some people will only just be waking up to the news of the horrific attacks in Mancheste... Checkpoint Systems unveils Bug Tag 2 loss preventi... » Checkpoint Systems has announced the launch of Bug Tag 2 – an innovative loss prevention solution th... Edesix launches new head and torso mounted body wo... » Edesix has announced the launch of new head and torso mounted cameras. The X-100 is a side-mounta... Banknote Watch offers essential advice as old £5 i... » As of Friday 5th May 2017, the paper £5 note was officially withdrawn from circulation and no lo...

CLICK HERE TO

SOCIAL BOOKMARK

Talking Point Banner

The UK's largest sporting retailer, Sports Direct, reportedly suffered a data breach last year but has been accused of failing to tell its workforce that their personal details – including names, email addresses and phone numbers - may have been accessed by a hacker.

 

http://www.ibtimes.co.uk/sports-direct-hacked-uk-retailer-accused-sweeping-major-breach-under-carpet-1605473

Lee Munson, security researcher at Comparitech.com , says: ”Companies are breached all the time and, as unfortunate as that is, it is a likely risk of doing business these days, and one that cannot be avoided with certainty. What is controllable, however, is the way in which the breach is responded to.

“In the case of Sports Direct, the response appears to be woefully inadequate, leaving some 30,000 staff at risk of identity theft and other crimes.

“It’s bad enough that employees’ personal data was stored in an unencrypted form, but the fact that there was no disclosure to them for so long, despite contact being made with the Information Commissioner’s Office, is unforgivable.

“We can only hope that situations like this will be avoided in the future when the new EU GDPR regulations come into play as breaches will then need to be declared within 72 hours or else the company will be liable for massive fines.

“In the meantime, Sports Direct staff may be wondering why their employer fell victim to an attack that appears to have leveraged unpatched systems and a simple failure to store sensitive information in a secure manner.”