France’s data protection authority, the CNIL, has fined Bouygues Telecom 250,000 euros for a data breach involving the personal data of B & You customers. An investigation found outside parties had the ability to access contracts and invoices of B & You customers through alteration of a URL address on Bouygues Telecom’s website. The breach affected more than 2 million customers over a two-year period. The CNIL found Bouygues Telecom did not reactivate an authentication function that had been disabled for a test phase.
If you want to comment on this post, you need to login.