ICO slaps TalkTalk with record GBP400,000 fine for 2015 data breach

7 Oct 2016

Alternative British broadband provider TalkTalk has been issued with a record GBP400,000 (USD508,000) fine by the Information Commissioner’s Office (ICO) for security failings that allowed a cyber attacker to access customer data ‘with ease’. The ICO said that following an in-depth investigation it had determined that an attack on the operator in October 2015 could have prevented if basic steps to protect customers’ information had been taken.

Commenting on the matter, Information Commissioner Elizabeth Denham was cited as saying: ‘TalkTalk’s failure to implement the most basic cyber security measures allowed hackers to penetrate TalkTalk’s systems with ease … TalkTalk should and could have done more to safeguard its customer information. It did not and we have taken action.’

In a statement responding to the fine, meanwhile, TalkTalk said: ‘TalkTalk has cooperated fully with the ICO at all times and, whilst this is clearly a disappointing decision, we continue to be respectful of the important role the ICO plays in upholding the privacy of consumers.’

United Kingdom, TalkTalk (incl. FibreNation)