Halkyn Security Blog
Specialist Security & Risk Management Consultants

Posts tagged Identity Protection

Secure Data Disposal – not really…

Secure Data Disposal – not really…

Continuing the unfortunate trend of public sector organisations falling foul of the Data Protection Act, we have another example of the ICO levying a large fine on a council. Today the UK Information Commissioner’s Office (ICO) announced that the Scottish Borders Council has been fined £250,000 for allowing the improper disposal of personal data. As […]

Read More

Data Security – Fines for breaches increasing

ICO Fines Increasing for data breaches

This month has seen a major increase in the fines levied by the Information Commissioner for breaches of the Data Protection Act. Over the last 30 days, there have been over £500,000 fined in three different breaches of the act, with £415,000 of the fines being in the last 11 days. At the moment, it seems to […]

Read More

Online bingo players details sold

Online bingo players details sold

Another week, another Data Protection Act breach. Yesterday, the ICO reported on a former employee of an online gambling site who pleaded guilty to selling the personal data belonging to over 65,000 players. As a result of his guilty plea, Mr Ben-Ezra was given a conditional discharge and ordered to pay his former employers £1,700 […]

Read More

Data Protection Act – Calls for more powers while breaches continue

Data Protection Act – Calls for more powers while breaches continue

Earlier this week, the Justice Committee Ninth Report made the recommendation that the Information Commissioners should have the power to issue custodial sentences (prison time) for breaches of the Data Protection Act rather than be limited to the current system whereby a fine of up to £500,000 can be levied against those responsible for a […]

Read More

Document disposal – don’t take risks

Document disposal – don’t take risks

There has been a lot of press coverage over the recent incident where a cabinet office minister (Oliver Letwin) was observed throwing official documents into a public waste bin. Although it is not yet confirmed, it has been reported that these documents contained a mix of information relating to counter-terrorism and correspondence from his constituency […]

Read More

Widespread Hacking in South Korea

Widespread Hacking in South Korea

It was recently reported that nearly ever member (approximately 35 Million people) of a South Korean social networking site had their personal data exposed as the result of a hack on Cyworld’s systems. From the Register: Names, phone numbers, email addresses, and other details may have been exposed through the Cyworld hack, which follows previous […]

Read More

Stegobot steals passwords from Facebook photos

Stegobot steals passwords from Facebook photos

A report in New Scientist magazine this week identifies a new threat to your information security, although it is unclear if this is in the wild yet. In the article, researchers created software (a “bot”) that extracted sensitive user data (such as banking passwords or credit card numbers) and then hid this inside a picture […]

Read More

Paypal Phishing Attacks

Paypal Phishing Attacks

Phishing is an on-going threat to most businesses and home users. It is safe to assume that there will be a constant stream of phishing emails sent to pretty much any email address imaginable. As a result of this, it is crucially important that you educate your staff and your family about what to look […]

Read More

Ex-T-Mobile Employees Fined £73,700 for data theft

Ex-T-Mobile Employees Fined £73,700 for data theft

The ICO has issued another set of fines for misuse of personal data and violations of the Data Protection Act. This instance, however, is clear cut criminal behavior rather than business misuse, or misunderstanding, of the act. Also in this instance, it appears that the incident came to light after T-Mobile conducted an internal investigation and reported […]

Read More

Surrey Council Fined over DPA offences

Surrey Council Fined over DPA offences

The ICO has flexed its muscles against Surrey Council and imposed a £120,000 fine for breaching the Data Protection Act. While this falls well short of the maximum allowed in law (£500,000) it is larger than most of the recent fines issued. The likelihood is that the size of this offence was more driven by the repeated […]

Read More

Preventing Identity Theft – free downloadable handout

Preventing Identity Theft – free downloadable handout

Identity theft is a genuine risk, for you, your employees, your family and your customers. It may not happen as often as some of the media reports claim, but it happens and the impact can be devastating. If you, or your employees enable the theft of your customers identity data it can spell the end […]

Read More

Recent Tweets Recent Tweets