5 of the worst data breaches in 2017 so far
In 2016 we saw a rise in the number of historic data breaches taking place with huge companies and millions of people being affected. 2017 doesn’t appear to show any signs of hackers slowing down with news feeds filled with data breach instances occurring almost daily.
With recent news that payday loan firm Wonga has suffered a large data breach, we look at five of the biggest hacks that have occurred so far in 2017.
The most recent large-scale hack to occur in 2017 is that of pay lender company Wonga. Their data breach has affected up to 245,000 customers in the UK, with information stolen including names, addresses, phone numbers, bank account numbers and sort codes. There have also been concerns raised that the stolen information could include the last four digits of customers’ bank cards. While Wonga have stated that they don’t believe hackers have gained access to accounts, they have set up a help page and a phone line for borrowers to learn more and raise any concerns.
Playstation and Xbox forums
A huge data breach that came to air this year was one that affected more than 2.5 million gamers that use the Xbox360 ISO and Playstation’s PSP ISO forums (forums used to share illegally downloaded software). The hack meant that all users had their account details compromised including email addresses, passwords and IP addresses. Although both companies have suffered many cyber attacks before, this is one of the most severe.
In January, the E-Sports Entertainment Association League (Esea) announced that it believed 1.5 million user profiles had been posted online. Personal information including names and email addresses were said to have been compromised and the Esea have made a statement to say that they are working hard to further fortify their security.
Association of British Travel Agents
Another recent hack, the abta.com web server for the Association of British Travel Agents was breached, exposing the details of 43,000 people. Thousands of files were compromised, including approximately 1,000 that could include personal identity of customers of ABTA members and around 650 including personal identity information of ABTA members. The hack was said to have been caused by a system vulnerability ‘that the infiltrator exposed’ to access the information. The blame was placed on a third-party web developer and hosting company.
At the beginning of the year, game developer Supercell announced to its users that they should change their passwords following a data breach. The data grab was related to third-party forum software and it is claimed the dataset that was being sold online contained more than one million user account details.
Unfortunately the amount of data breaches doesn’t appear to be slowing and it’s more important than ever for companies to be vigilant with their cybersecurity. Companies face huge reputational damage in the wake of a data loss, and from May next year following the introduction of the new data protection regime (the General Data Protection Regulation), they will also face the prospect of crippling fines and penalties from the UK’s Information Commissioner for breach of the new law. Contact us for more information and help navigating through the area of data protection and cybersecurity law.