PCI

British Airways to face fine of £183.39m for data breach under GDPR

The ICO has issued a notice of its intention to fine British Airways £183.39m for infringements of new Data Protection laws. This follows an investigation by the ICO into a cyber incident involving the personal data of 500,000 customers.  The incident involved British Airways website users being directed to a fraudulent site which collected log…

Read More

Demand for cyber security sees Devon-based Securious expand team by 71%

Here at Securious, we have seen a dramatic twelve months of growth in which businesses in the South West have become increasingly aware of their vulnerability to cyber attacks. Despite this, commercial operations could be blind-sided by payment card fraud due to the incorrect implementation of 3rd party Payment Card solutions. Lack of online payment…

Read More

Marriott Hotel could not rule out possibility of encryption keys being stolen

Marriott Hotels is investigating a data breach including encrypted payment card data but can not rule out possibility that encryption keys had also been stolen Marriott has set up a separate website to help the 327 million customers who may be affected by the incident. The access attempt was discovered when Marriott received an alert from…

Read More

Secure South West 11 event – access to cyber security expertise locally

SSW11 – The University of Plymouth are hosting the Eleventh Secure South West  event on the 24th October 2018 where academic and industry experts share data and cyber security knowledge with organisations in the South West This free event has gained significant traction within the South West region as it offers an amazing diversity of…

Read More

Check your E-commerce website for malicious JavaScript

Increase in malicious JavaScript attack on E-commerce websites. If you are running a website that takes credit card payments and have integrated a shopping cart – please take note: A relatively simple technique, that has been around for many years has suddenly been seen to be on the increase. The technique allows the injection of…

Read More

British Airways card breach – a sophisticated attack?

British Airways reported that it had experienced a “sophisticated, malicious criminal attack” on its website and App resulting in its customers full credit card details being stolen between 21 August and 5th September.  We explore how sophisticated this attack was, given the mandatory controls required to be Payment Card Industry Data Security Standard (PCI DSS)…

Read More

Advice for charities taking credit card payments

Credit cards are a faster, simpler payment option for charities to facilitate donations. Using credit cards, however, does require additional security measures to be put in place. It is mandatory for charities which process credit cards to comply with the Payment Card Industry Data Security Standard (PCI DSS). The affect on reputation and possible large…

Read More

Data Breach at Ticketmaster

Ticketmaster are warning that customers personal data and payment information may have been accessed by an unknown  third-party. The breach was identified by Ticketmaster on the 23rd June 2018 and customers who may have been affected by the security breach have been contacted.  This includes customers who may have bought tickets, or attempted to buy…

Read More

Dixons Carphone Breach involving 1.2m customers details and 5.9m payment cards.

In January 2018 Carphone Warehouse received a £400,000 fine as a result of a breach in 2015, six months later Dixons Carphone is reporting that it has suffered another incident. Dixons Carphone have issued a statement saying that they are currently investigating breach which indicates that there was an attempt to compromise 5.9 million cards…

Read More