The UK’s data protection watchdog has fined South Staffordshire Water’s parent company nearly £1 million over security failings exposed by the Cl0p ransomware attack in 2022.
Issuing the fine of £963,900 ($1.3 million), the Information Commissioner’s Office (ICO) said the attack exposed “significant failures in the company’s approach to data security.”
The attack, claimed by Cl0p, was detected in July 2022 after engineers responded to performance issues, but a thorough postmortem revealed the initial intrusion occurred almost two years earlier, in September 2020.
Read more…
Source: The Register News
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- UK crime agency arrests suspect in Deutsche Telekom cyber attack
February 23, 2017
British authorities have arrested a suspect in connection with a cyber attack that infected nearly 1 million routers used to access Deutsche Telekom’s (DTEGn.DE) internet service, German federal police said on Thursday. Britain’s National Crime Agency detained the 29-year-old Briton at one of London’s airports on Wednesday, the police said in a statement. Deutsche Telekom welcomed the ...
- Cybersecurity: Queen opens centre to protect against attacks
February 14, 2017
The Queen was shown how hackers could target the UK’s electricity supply as she opened a centre to protect the nation from cyber attacks. The National Cyber Security Centre – part of intelligence agency GCHQ – started work in October as part of a £1.9bn five-year strategy. Staff in Victoria, central London, will be joined by experts ...
- Security firms ‘overstate hackers’ abilities to boost sales’
February 3, 2017
Computer security companies have been accused of “massively” exaggerating the abilities of malicious hackers. Dr Ian Levy, technical director of the UK’s National Cyber Security Centre, made the accusation in a speech. He said the firms played up hackers’ abilities to help them sell security hardware and services. Overplaying hackers’ skills let the firms claim only they could ...
- Britain could carry out cyber attacks to defend itself against Russia
February 2, 2017
Britain could carry out offensive cyber attacks to tackle high-tech Russian subversion, the Defence Secretary has suggested. Sir Michael Fallon said the UK and its Nato allies must now compete on the cyber battlefield as much as they do in conventional air, land and sea warfare. Britain’s adversaries must know they face a price for using cyber ...
- Cyber security chief honoured for taming hi-tech threats
January 4, 2017
A leader in the field of cyber security who spent 28 years in the RAF and protected the White House has been named in the Queen’s New Year’s Honours list. Group captain Andrew Gudgeon, who works at Nationwide, was awarded an OBE for his work strengthening and protecting the UK and US’s cyber security, The 51-year-old, who ...
- Army social media psyops bods struggling to attract fresh blood
January 3, 2017
Army social media psyops unit 77 Brigade is struggling to reel in new government cyber-warriors in spite of a recruitment publicity blitz last year, according to the Ministry of Defence. The “brigade” – in reality a unit slightly smaller than an infantry battalion, with a target manning strength of 448 people – is under strength by ...