Fines Amounting to £400,000 Imposed to Carphone Warehouse Over Data Breach in 2015

By No machine-readable author provided. Cjb~commonswiki assumed (based on copyright claims). [GFDL, CC-BY-SA-3.0 or CC BY 2.5] via Wikimedia Commons

A part of FTSE 100 Dixons Carphone, Carphone Warehouse, has been imposed with a fine amounting to £400,000 because of a data breach in 2015.

The Information Commissioner’s Office (ICO) has commanded that the company pay after some hackers gained access to the personal information of around 1,000 employees and 3 million customers.

Elizabeth Denham, the Information Commissioner, said that it was “concerning” that the retailer was not tight enough on security.

She stated: “A company as large, well-resourced, and established as Carphone Warehouse, should have been actively assessing its data security systems, and ensuring systems were robust and not vulnerable to such attacks.

“Carphone Warehouse should be at the top of its game when it comes to cyber-security, and it is concerning that the systemic failures we found related to rudimentary, commonplace measures.”

The said hack affected websites such as Mobiles.co.uk and OneStopPhoneShop.com, which are part of the online business of Carphone Warehouse.

The hackers were able to gain access to the system with the use of out-of-date WordPress software.

However, the ICO recognised that there was no evidence of any identity theft or fraud that had occurred as a result of the said hack.

Today, shares in Dixons Carphone were down around 0.6 percent, even though this morning, the company also announced that its CFO is leaving for Marks and Spencer.