Penalty after Cyberattack against Bank
More than 33,000 data records were captured by criminals in the course of a cyber attack. The data protection authority found that the bank concerned had not taken appropriate measures to prevent attacks. Therefore, the institute violated the GDPR and was sentenced to a fine of approximately €500,000.
Type of Issue:
Theft of Data
Number of involved data records:
Special category of data involved:
Violation of GDPR Paragraph:
32. Security of processing