People may be forgiven for thinking that cyber security blunders only occur in US organisations. After all, some of the biggest data breaches have taken place in the US; in the past few years the likes of retailer Target, affair website Ashley Madison, financial services firm JP Morgan Chase, health insurance firm Anthem, and the Office of Personnel Management (OPM) have all suffered huge data breaches. But the UK is doing its best to keep up with its US counterparts. The public sector in particular has been fraught with data breaches, which Computing documented last month.
But what about the private sector?
Well, there are some statistics that make for grim reading for those within the private sector. For example, more than 170 law firms were investigated by the Information Commissioner’s Office (ICO) over potential data breaches during 2014, and all of the UK’s major banks and lenders have reported data breaches in the last two years.
Computing has spoken to many chief information security officers (CISOs) who still maintain that human error is the biggest cyber security issue. But worse still, is that according to one survey in the US, a quarter of employees would sell corporate data for just £5k and a staggering three per cent would hand over company data for as little as £100 – so deliberate breaches of data can occur as well as those that have been by mistake.
Those statistics are not reassuring for UK consumers, and they should rightfully feel betrayed when businesses manage to lose their data, whether by attack, or by carelessness.
On that note, here’s Computing’s list of biggest cyber security blunders.
Computing’s Enterprise Security & Risk Management Summit will be on 26th November 2015 in Central London. It is free to attend, click here for details!