Data protection watchdog warns of growing threat of cyber attacks

  • Data Protection
data protection
Peninsula Logo

Peninsula Team, Peninsula Team

(Last updated )

According to a new report published by the Information Commissioner's Office (ICO), more organisations than ever are experiencing cyber security breaches that put people’s personal information at risk.

The Learning from the Mistakes of Others report has practical advice to help organisations to understand common security failures and take simple steps to improve their own security, preventing future data breaches before they can happen.

It analyses the data breach reports it has received and shares lessons that can be learnt from common security mistakes.

Over 3000 cyber breaches were reported to the ICO in 2023, with the finance (22%), retail (18%) and education (11%) sectors reporting the most incidents. In one example, a simple phishing email to a construction company compromised the personal information of over 100,000 people.

The ICO’s Deputy Commissioner — Regulatory Supervision, Stephen Bonner, said: “People need to feel confident that organisations are doing as much as they possibly can to keep their personal information secure. While cyber attacks are growing more sophisticated, we find that many organisations are not responding accordingly and are still neglecting the very foundations of cyber security.”

Leading causes of cyber security breaches

The report focuses on:

•           phishing — where scam messages trick the user and persuade people to share passwords or accidentally download malware

•           brute force attacks — where criminals use trial and error to guess username and password combinations, or encryption keys

•           denial of service — where criminals aim to stop the normal functioning of a website or computer network by overloading it

•           errors — where security settings are misconfigured, including being poorly implemented, not maintained and/or left on default settings

•           supply chain attacks — where products, services or technology being used are compromised and then used to infiltrate the systems.

Visit BrAInbox today where you can find answers to questions like Do I need to do anything before I start monitoring staff?

Related articles

  • polling station

    Blog

    What could a general election mean for employment law?

    Here's what the big three have each vowed to do should they come away with an election win.

    Peninsula TeamPeninsula Team
    • Employment Law
  • NIC

    Blog

    Conservatives plan NICs abolition for self employed

    After a difficult week, PM Rishi Sunak has set out a raft of tax measures at the Conservative manifesto launch with plans to abolish main NICs rate for four million self employed workers

    Peninsula TeamPeninsula Team
    • Employment Law
  • Global survey results

    Blog

    UK Lagging in Mental Health Conversations: A Wake-Up Call for Employers

    The UK is diverging from this global trend, with a 4% decrease in employees speaking out about mental health issues.

    Peninsula Team Peninsula Team
    • Business Advice
Back to resource hub

Try Brainbox for free today

When AI meets 40 years of Peninsula expertise... you get instant, expert answers to your HR and health & safety questions

Sign up to our newsletter

Get the latest news & tips that matter most to your business in our monthly newsletter.