Vid game biz failed to carry out pen-testing
By John Leyden 27 Jun 2017 A small UK company that suffered a cyber attack has been fined £60,000 by the Information Commissioner’s Office (ICO).
An investigation by the ICO found Berkshire-based Boomerang Video failed to take basic steps to stop its website being attacked, a hacking incident that led to the exposure of the personal details of 26,000 back in 2014. An unidentified attacker used SQL injection (a common hacking technique) to access 26,331 customer details.
The ICO hopes the enforcement action (pdf) will prompt other small businesses to review their security policies.
Full Article.