Locks and Security News: your weekly locks and security industry newsletter
24th April 2019 Issue no. 454
Your industry news - first
We strongly recommend viewing Locks and Security News full size in your web browser. Click our masthead above to visit our website version.
Is your website vulnerable to ‘oldest hackers’ trick in the book’?
A hotel booking website has been fined £7,500 after becoming the latest victim of one of the ‘oldest hackers’ tricks in the book’. The ICO is warning organisations that they must act now to protect themselves from SQL injection attacks – which remain one of the most common forms of online attack.
Worldview Limited was served the penalty following a serious data breach caused by a vulnerability on their website, which an attacker was able to exploit to access the full card details of 3,814 customers. They would have received a £75,000 penalty were it not for the company’s financial situation.
SQL injection attacks are preventable but organisations need to spend the necessary time and effort to make sure their website isn’t vulnerable. If you don’t have the expertise in house, then it is important that you find someone that does.
You can find out about how SQL injection attacks work and what you can do to stop them in a blog written by the ICO’s Group Manager for Technology, Simon Rice.
More detailed guidance can be found in their recent IT security report.
3rd December 2014