Kitz Forum
Announcements => News Articles => Topic started by: Bowdon on June 13, 2018, 11:10:17 AM
-
https://news.sky.com/story/hacking-targets-customers-of-currys-pc-world-11403182 (https://news.sky.com/story/hacking-targets-customers-of-currys-pc-world-11403182)
Dixons Carphone says it has been the victim of an "unauthorised data access" in which millions of customer bank card details were targeted over the past 12 months.
The company believed there were attempts since last July - only discovered over the past week - to compromise 5.9 million cards in one of its processing systems for Currys PC World and Dixons Travel stores.
It said there was currently no evidence of any fraudulent use of the information - with the vast majority of the cards having chip and pin protection.
However, Dixons Carphone said it had notified card providers to 105,000 non-EU issued cards that did not have chip and pin technology so those customers could be immediately protected.
In addition, Dixons Carphone said 1.2 million personal data records were hacked.
-
No ones data is safe these days
-
The question is what was the backdoor.
-
Agree with Spring, hope we find out eventually. Would someone let us all know the story, if some real details are published?
I wonder what can be done about giving these companies a real slap. What you do not want is for a huge fine to mean that the company starts cutting corners even more, so making security and sys admin functions even worse. Any punishment handed down by the courts ought to include a requirement that they pass enhanced third-party security audits ever year afterwards, and of course they have to pay for these costs. Also external experts can insist on security upgrades with the backing of a court order.
-
I think the law needs to include data theft to the crimes were a person in the company can be held responsible.