Bridewell Consulting’s Data Privacy Consultant, Becky Nicholson and Head of Penetration Testing, James Smith, team up with IFSEC Global to comment on the Travelex cyber attack which launched on New Year’s Eve.
Becky comments: “Travelex has certain obligations as a controller under Data Protection legislation. One of which is to report personal data breaches to the supervisory authority. It is important, however, to ascertain to whom the data belongs and where it is being processed, so as to determine the jurisdiction.”
James comments: “The first thing to learn from this is that all organisations are at risk because everyone has something of value to lose. Whether that’s access to systems, intellectual property or customer data.”