Commentaries and Analyses

UK: DSG Retail Ltd fined £500,000 for failing to secure information of at least 14 million people

From the Information Commissioner’s Office, this release: The Information Commissioner’s Office (ICO) has fined DSG Retail Limited (DSG) £500,000 after a ‘point of sale’ computer system was compromised as a result of a cyber-attack, affecting at least 14 million people. An ICO investigation found that an attacker installed malware on 5,390 tills at DSG’s Currys PC...

FTC Finalizes Settlement with Utah Company and its former CEO over Allegations they Failed to Safeguard Consumer Data

The Federal Trade Commission has granted final approval to a settlement with a Utah-based technology company related to allegations that the firm failed to put in place reasonable security safeguards, allowing a hacker to access the personal information of more than a million consumers. The FTC alleged that InfoTrax Systems, L.C. and its former CEO Mark Rawlins failed...

7 security incidents that cost CISOs their jobs

Dan Swinhoe reports on 7 incidents that resulted in CISOs losing their job.  Before you click on the link to read the story, see if you can name the 7 companies from memory or prediction. I’ll give you one hint to be fair: these are not all incidents in which the CISO was fired...

Ghosts in the Clouds: Inside China’s Major Corporate Hack

Rob Barry and Dustin Volz report: The hackers seemed to be everywhere. In one of the largest-ever corporate espionage efforts, cyberattackers alleged to be working for China’s intelligence services stole volumes of intellectual property, security clearance details and other records from scores of companies over the past several years. They got access to systems...