Bupa Insurance Services Limited (Bupa) has been fined £175,000 by the Information Commissioner’s Office (ICO) for failing to have effective security measures in place to protect customers’ personal information.
Between 6 January and 11 March 2017, a Bupa employee was able to extract the personal information of 547,000 Bupa Global customers and offer it for sale on the dark web.
The employee accessed the information via Bupa’s customer relationship management system, known as SWAN. The system holds customer records relating to 1.5 million people.
The employee sent bulk data reports to his personal email account. The compromised information, which included names, dates of birth, email addresses and nationality, was later offered for sale on the dark web.
While organizations scramble to get ready for California's Consumer Privacy Act ("CCPA"), Nevada has discreetly…
"Online companies must start taking responsibility for their platforms, and help restore public trust in this technology."…
100 Million spent on Physical Security + Securing Data Center + Firewalls + Endpoints =…
France’s data-privacy known as the CNIL - Commission nationale de l'informatique et des libertés, slapped…
On 15 August 2020, the Lei Geral de Proteção de Dados Pessoais (LGPD), or the…
According to Google, at least 52.5 million users could be affected by the newest system…