UK SME fined £60K for leaving itself vulnerable to hack attack

Vid game biz failed to carry out pen-testing.

By John Leyden

A small UK company that suffered a cyber attack has been fined £60,000 by the Information Commissioner’s Office (ICO).

An investigation by the ICO found Berkshire-based Boomerang Video failed to take basic steps to stop its website being attacked, a hacking incident that led to the exposure of the personal details of 26,000 back in 2014. An unidentified attacker used SQL injection (a common hacking technique) to access 26,331 customer details.

To read the entire article, please click here.