Category: Group Action
Ransomware healthcare attacks
The 2020 surge in ransomware healthcare attacks has highlighted how healthcare organisations have become more vulnerable to cyberattacks during the coronavirus pandemic. While many of us have turned to remote working over the past year, ransomware has long been a remote access tool for cybercriminals, allowing them to breach systems and take control of computer servers and machines from anywhere in the world.
In the UK, we constantly hear that our health service is constrained by limited resources, but few stop to consider the impact that this has on data privacy. Faced with outdated hardware and cybersecurity software in some cases, healthcare organisations could have poor defences against cyberattacks. They can be, therefore, risking the exposure of patient and employee data on a daily basis.
Every UK citizen has a right to have their personal information kept safe and secure by third-party organisations. This should mean that you may be entitled to claim compensation if your data has been exposed. For free, no-obligation advice, contact us today to talk to a member of our specialist data breach team.
Are too many organisations complacent about data protection?
Despite the fact that every consumer’s right to adequate data security is enshrined in law, it appears that too many organisations remain complacent about data protection.
A 2020 study by Kaspersky, reported by Security News Desk, reportedly found that 65% of IT security decision-makers agreed that their organisations were complacent about protecting customer data. Complacency and carelessness are unforgivable in this digital age, in which hackers are developing increasingly sophisticated ways of exposing personal data. In fact, organisations may be contributing to the rising tide of data breaches through their own negligence of established procedures and cybersecurity measures.
Your Lawyers – The Data Leak Lawyers – as leading data protection compensation solicitors, are here to support anyone who has fallen prey to the negligence of a third party. You can contact us for free, no-obligation advice if you think you have a data breach claim to make.
Careless approach to data protection – rights for victims
Despite the fact that there is extensive legislation designed to prevent data breaches, many organisations continue to have a careless approach to data protection.
In this digital age, in which consumers regularly disclose private data to third party companies online, it is unacceptable that many are neglecting their duty to protect this information.
We are always on the lookout for data leaks which show a carelessness on the part of the organisation, as this may mean that victims may be entitled to claim compensation for the exposure of their personal information. Unfortunately, many companies fail to realise that their data protection duties are equal to their responsibilities to deliver on the goods and services paid for by their customers. We believe that it is important to raise awareness of this widespread issue, and to make sure any victims can achieve justice for the effects of data breaches.
Arup data breach affects employee payroll information
Arup, an international professional services firm, has reportedly suffered a recent data breach, after their third-party payroll provider succumbed to a cybersecurity incident.
The payroll information of current and former employees is understood to have been affected, with Arup contacting those whose details have been compromised. We cannot yet put a number on the scale of the breach but, based on the information disclosed to customers, the Arup data breach may have affected many of the company’s employees.
We have already begun taking on cases for affected claimants, who may be entitled to recover compensation for the exposure of their personal data. If you have been notified of your involvement in the Arup data breach, please do not hesitate to contact us for free, no-obligation advice on your potential compensation claim.
Midlands News Association data breach exposes journalists’ private information
According to an article from HoldtheFrontPage, the Midlands News Association has recently suffered a data security incident that led to the publication of private details belonging to journalists.
This is understood to have included some of whom may have been employed by the newspaper as far back as 2011. It is believed that an unauthorised third party was able to access the data, and that they chose to post the stolen information online.
All data controllers have a legal responsibility to ensure that the data disclosed to them is stored and processed securely. If they ever fail to uphold this duty, they can be held to account under the law. If it is found to have breached data protection law, the Midlands News Association could be liable to pay compensation to those affected. Anyone who has been notified of their involvement in the data breach can contact us to make an enquiry about their potential compensation claim.
Fat Face data breach
In the penultimate week of March, retail chain Fat Face reportedly sent an email to customers notifying them of a breach that had first been identified in mid-January. Reportedly sent to thousands of affected customers, the email revealed that private data had been accessed by an unauthorised user for a limited period of time. It has also been alleged that customers were told to keep the notification of the Fat Face data breach private, and that the company has allegedly paid a ransom to a cybercrime gang.
These claims have yet to be fully verified, but there are still several issues arising out of the Fat Face data breach. The company’s notification to customers appears to be delayed at best, which raises questions about whether Fat Face followed the correct data breach notification procedures. At this stage, we do not know, and we will need to find out.
In any case, the victims whose private information was exposed could now fall victim to data misuse. If it emerges that Fat Face was at fault, victims may be eligible to make compensation claims, and we are already taking claims forward for this incident.
Data Privacy Day 2021 – will we see future changes?
Data Privacy Day 2021 was marked recently on the 28th January, the fifteenth time the day has been celebrated. Also called Data Protection Day in the UK and Europe, Data Privacy Day commemorates the signing of the first international treaty that was legally binding for governing data protection and privacy, named Convention 108.
After what had been another eventful year of data breaches in 2020, we believe it is important for all individuals and organisations to start 2021 with a positive, proactive approach to data protection. The commemorative day at the start of the year should be valuable in raising awareness about issues relating to data privacy, yet nothing ever seems to change as we continue to see breach after breach after breach.
At Your Lawyers – The Data Leak Lawyers – we aim to empower victims of data breaches to take action against those who have failed to protect their data, to ensure that the consequences of data breaches can be learned. We feel that it is the most proactive way forward given that no amount of legislation or commemorative days appear to be making the difference that is really required.
When a third party has failed to protect personal data
If you are ever affected by a data breach or cybersecurity incident caused by a third-party organisation whom you entrusted your information to, it is important that you know what your rights are in the fallout of such an incident. It may feel difficult to stand up to a huge company or local authority, but if a third party has failed to protect personal data, they should be held responsible for their reckless attitude to data protection.
At Your Lawyers – The Data Leak Lawyers – we have been fighting for the rights of data breach victims for many years, aiming to bring justice for the damage that victims have suffered from. Organisations must stand up and take their data protection duties seriously. If they fail to do so, they should be punished as they would be under other areas of the law.
SITA data breach affects airline passengers across the globe
Another travel industry data breach has recently hit the headlines, with the popular airline IT provider SITA suffering a monumental cyberattack. The SITA data breach is thought to have exposed information belonging to hundreds of thousands of passengers.
Among the affected airlines are those owned by Star Alliance, the world’s largest airline group, and British Airways is also affected. Some of the thousands of clients that we represent for the 2018 BA data breaches have already come forward for our assistance.
The travel industry has been plagued by data breaches, with companies such as Marriott and easyJet falling prey to significant hacks in recent years. The wealth of information that is held by airlines and travel companies makes them prime targets for cybercriminals, and the effects can be devastating for those affected.
Wentworth Golf Club hack – claim compensation
A prestigious golf club in Surrey recently fell prey to a cyberattack in which hackers reportedly accessed the personal data of 4,000 members. Victims were notified of the Wentworth Golf Club hack on 15th January in an email sent from Neil Coulson, who is understood to be the general manager at the Club.
We have already taken a number of cases on and we are offering to represent people affected on a No Win, No Fee basis.
While the club may have assured members that there is not a significant risk to victims, the data exposure could be sufficient enough to leave affected members vulnerable and distressed. If you were affected and you wish to claim compensation, please do not hesitate to contact us now.