The UK Information Commissioner’s Office is warning organizations that they must make sure their websites are protected against one of the most common forms of online attack known as SQL injection. The warning comes after the hotel booking website, Worldview Limited, was fined 7,500 following a serious data breach where a vulnerability on the company’s site allowed attackers to access the full payment card details of 3,814 customers. The company has now corrected the flaw and have invested in improving their IT security systems.
Website fined for leaking encrypted card details and decryption key
