Heathrow Airport Fined Over USB Data Breach

Heathrow Airport Fined Over USB Data Breach

Last October, a Heathrow employee lost a USB stick containing 76 folders and more than 1,000 confidential files, including the names, dates of birth, passport numbers and other personal information related to aviation security staff.

Heathrow Airport, the busiest airport in the United Kingdom, has been fined £120,000 (about $158,173) following a data breach caused by a misplaced USB drive.

Last October, a Heathrow employee lost a USB stick containing 76 folders and more than 1,000 confidential files, including the names, dates of birth, passport numbers and other personal information related to aviation security staff.

The USB stick was found by a member of the public, who looked through its contents at a public library before handing it over to the press, who made a copy and returned it to the airport. The information on the USB drive was neither encrypted nor protected.

On Monday, the UK Information Commissioner’s Office (ICO) said that Heathrow has to pay a fine for allowing the security breach to happen and for failing to ensure that the “personal data held on its network was properly secured.” In addition to the breach, the ICO discovered during its investigation that only two percent of the airport’s 6,500-person staff had been trained in data protection.

"Data protection should have been high on Heathrow's agenda," said ICO Director of Investigations Steve Eckersley. "But our investigation found a catalog of shortcomings in corporate standards, training, and vision that indicated otherwise."

According to a Heathrow Airport spokesperson, the airport has strengthened its processes and policies following the incident, including companywide information security training.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

  • Using Modern Technology

    Using Modern Technology

    Workplace violence is a serious and growing challenge for many organizations — including those in the healthcare industry. Read Now

  • The Core Value Proposition

    The Core Value Proposition

    Machine and deep learning algorithms are everywhere in our lives. Masquerading as AI, they are only in their infancy. Have a conversation with a ChatGPT chatbot, and it becomes clear just how far we have come in a short time and how far we have to go. Read Now

  • Progressing in Capabilities

    Progressing in Capabilities

    Hazardous areas within industries like oil and gas, manufacturing, agriculture and the like, have long-sought reliable video surveillance cameras and equipment that can operate safely in these harsh and unpredictable environments. Read Now

  • A Comprehensive Nationwide Solution

    A Comprehensive Nationwide Solution

    Across the United States, manufacturing facilities, distribution centers, truck yards, parking lots and car dealerships all have a common concern. They are targets for catalytic converters. In nearly every region, cases of catalytic converter thefts have skyrocketed. Read Now

Featured Cybersecurity

New Products

  • ComNet CNGE6FX2TX4PoE

    The ComNet cost-efficient CNGE6FX2TX4PoE is a six-port switch that offers four Gbps TX ports that support the IEEE802.3at standard and provide up to 30 watts of PoE to PDs. It also has a dedicated FX/TX combination port as well as a single FX SFP to act as an additional port or an uplink port, giving the user additional options in managing network traffic. The CNGE6FX2TX4PoE is designed for use in unconditioned environments and typically used in perimeter surveillance. 3

  • FlexPower® Global™ Series (FPG) from LifeSafety Power

    FlexPower® Global™ Series (FPG) from LifeSafety Power

    The FlexPower® Global™ Series (FPG) from LifeSafety Power—designed to provide DC power for access control systems in international applications—is now PSE listed for Japan and compatible with the country’s 100VAC applications. 3

  • BIO-key MobileAuth

    BIO-key MobileAuth

    BIO-key International has introduced its new mobile app, BIO-key MobileAuth™ with PalmPositive™ the latest among over sixteen strong authentication factors available for BIO-key's PortalGuard® Identity-as-a-Service (IDaaS) platform. 3