Heathrow Airport Fined Over USB Data Breach

Heathrow Airport Fined Over USB Data Breach

Last October, a Heathrow employee lost a USB stick containing 76 folders and more than 1,000 confidential files, including the names, dates of birth, passport numbers and other personal information related to aviation security staff.

Heathrow Airport, the busiest airport in the United Kingdom, has been fined £120,000 (about $158,173) following a data breach caused by a misplaced USB drive.

Last October, a Heathrow employee lost a USB stick containing 76 folders and more than 1,000 confidential files, including the names, dates of birth, passport numbers and other personal information related to aviation security staff.

The USB stick was found by a member of the public, who looked through its contents at a public library before handing it over to the press, who made a copy and returned it to the airport. The information on the USB drive was neither encrypted nor protected.

On Monday, the UK Information Commissioner’s Office (ICO) said that Heathrow has to pay a fine for allowing the security breach to happen and for failing to ensure that the “personal data held on its network was properly secured.” In addition to the breach, the ICO discovered during its investigation that only two percent of the airport’s 6,500-person staff had been trained in data protection.

"Data protection should have been high on Heathrow's agenda," said ICO Director of Investigations Steve Eckersley. "But our investigation found a catalog of shortcomings in corporate standards, training, and vision that indicated otherwise."

According to a Heathrow Airport spokesperson, the airport has strengthened its processes and policies following the incident, including companywide information security training.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame.