The U.K. Information Commissioner's Office fined DSG Retail 500,000 GBP for a data breach. The ICO found hackers installed malware on 5,390 cash registers at DSG's Currys PC World and Dixons Travel locations between July 2017 and April 2018. Hackers were able to access 5.6 million payment card records and the personal information of 14 million individuals, including names, postcodes and email addresses. The attack went on for nine months before it was detected. The agency found DSG violated the Data Protection Act 1998 due to insufficient security practices and failing to properly safeguard customer data. ICO Director of Investigations Steve Eckersley said the fine would have been higher had the infractions taken place under the EU General Data Protection Regulation.
If you want to comment on this post, you need to login.