What should I do to prepare for any subject access requests that I might receive?
Get instant, expert answers to your HR questions...
- Home
- Resources
- Data Protection
- Data protection watchdog warns of growing threat of cyber attacks
Data protection watchdog warns of growing threat of cyber attacks
- Data Protection
Peninsula Team, Peninsula Team
(Last updated )
Peninsula Team, Peninsula Team
(Last updated )
According to a new report published by the Information Commissioner's Office (ICO), more organisations than ever are experiencing cyber security breaches that put people’s personal information at risk.
The Learning from the Mistakes of Others report has practical advice to help organisations to understand common security failures and take simple steps to improve their own security, preventing future data breaches before they can happen.
It analyses the data breach reports it has received and shares lessons that can be learnt from common security mistakes.
Over 3000 cyber breaches were reported to the ICO in 2023, with the finance (22%), retail (18%) and education (11%) sectors reporting the most incidents. In one example, a simple phishing email to a construction company compromised the personal information of over 100,000 people.
The ICO’s Deputy Commissioner — Regulatory Supervision, Stephen Bonner, said: “People need to feel confident that organisations are doing as much as they possibly can to keep their personal information secure. While cyber attacks are growing more sophisticated, we find that many organisations are not responding accordingly and are still neglecting the very foundations of cyber security.”
Leading causes of cyber security breaches
The report focuses on:
• phishing — where scam messages trick the user and persuade people to share passwords or accidentally download malware
• brute force attacks — where criminals use trial and error to guess username and password combinations, or encryption keys
• denial of service — where criminals aim to stop the normal functioning of a website or computer network by overloading it
• errors — where security settings are misconfigured, including being poorly implemented, not maintained and/or left on default settings
• supply chain attacks — where products, services or technology being used are compromised and then used to infiltrate the systems.
Visit BrAInbox today where you can find answers to questions like Do I need to do anything before I start monitoring staff?
- Home
- Resources
- Data Protection
- Data protection watchdog warns of growing threat of cyber attacks
Related articles
![polling station]()
Blog
What could a general election mean for employment law?
Here's what the highest polling parties have vowed to do with an election win...
Peninsula TeamPeninsula Team- Employment Law
![Major business changes predicted under a Labour government]()
Blog
General Election 2024: what would a win for Labour mean for employment law?
On 13 June 2024, Labour released its full manifesto, which confirmed that it would implement its Plan to Make Work Pay: Delivering a New Deal for Working People, which had been released weeks earlier. Below, we summarise the main proposals and what they mean for employers.
Peninsula TeamPeninsula Team- Employment Law
![Change to Employment Law under Lib Dems]()
Blog
General Election 2024: what would a win for the Liberal Democrats mean for employment law?
On 10 June 2024, the Liberal Democrats released their manifesto for 2024, entitled For a Fair Deal. This included a number of key commitments relating to workplace rights that would be relevant to employers to make up all or part of the next government. Below, we set out their key commitments and what that change could mean for the law.
Peninsula TeamPeninsula Team- Employment Law
Try Brainbox for free today
When AI meets 40 years of Peninsula expertise... you get instant, expert answers to your HR and health & safety questions