TalkTalk hacking crisis deepens as more details emerge

Telecoms giant receives ransom demand and reveals stolen data of up to 4 million customers may not have been encrypted

TalkTalk is facing increasing criticism after belatedly admitting it was the victim of a “significant and sustained” cyber-attack that has led to the theft of the credit card and bank details of up to 4 million customers.

The telecoms giant warned that the stolen customer data may not have been securely encrypted and that it had received a ransom demand from someone who claimed to have carried out the corporate hack.

Continue reading…

Read more

Did TalkTalk breach the Data Protection Act? | Rik Ferguson

Such a large volume of customer data should be effectively protected against attack: the company says it was – but that may be premature

On Wednesday, online criminals decided to attack the UK broadband provider TalkTalk. This wasn’t an attack aimed at interrupting its ability to do business or provide its services, this was an attack the goal of which seemed to be accessing the personal data of its millions of customers. Unfortunately, it was successful.

TalkTalk have so far revealed little about the precise nature of the attack. In all likelihood this is a product of the fact that the forensic investigation is ongoing, and by its very nature complex to conclude.

Continue reading…

Read more

David Jones customers hacked but store says no credit card details accessed

Unauthorised access involved names, email addresses, mailing addresses and order details of customers who have shopped on the store’s websites

The details of David Jones online customers have been hacked after a vulnerability in the department store’s website was discovered.

David Jones is not saying how many customers have been affected but has moved to reassure people no credit card details were accessed.

Continue reading…

Read more

Cold-calling ‘factory’ gets record fine after 180,000 complaints last year

Watchdog wants jail for those who breach data protection laws by selling lists of phone numbers to companies

A cold-calling company that has been pestering householders with automated calls on an “industrial scale” will be hit with a record fine next week.

The fine, which will be issued by the Information Commissioner’s Office (ICO) on Wednesday, is believed to be in the region of £200,000 and is the latest move in a concerted crackdown by the ICO and other agencies on nuisance calls.

Continue reading…

Read more

Watchdog to investigate charities’ ‘boiler room’ tactics

Information commissioner to look at allegations that cold callers have secured donations from people with dementia or terminal illnesses

The information commissioner is to investigate what he called “boiler room” tactics used by leading charities after claims they secured telephone donations from people with dementia and those who are terminally ill.

An undercover investigation by the Daily Mail at telephone fundraising company GoGen found that vulnerable members of the public were routinely asked over the phone to commit to direct debit donations after revealing they have memory problems or Alzheimer’s disease.

Continue reading…

Read more

Target CEO Gregg Steinhafel resigns in wake of customer data breach

• Chief executive out after 35 years at retail company
• Data breach affected 110 million customers

Target data breach: what you need to know

Target’s chairman and chief executive resigned on Monday, in the wake of a massive data breach that compromised personal details of some 110 million shoppers.

Gregg Steinhafel, who had been with the retailer for 35 years, had been chief executive since 2008. He will be replaced by John Mulligan, chief financial officer. In February, Mulligan apologised to Congress for the breach.

Continue reading…

Read more