A £183m fine was not what the directors of British Airways (BA) had been expecting. Owing to the GDPR, data breaches can end up being quite expensive— something the UK airline is now discovering for itself1 . And this figure doesn’t even quantify the loss of image! You may recall that in 2018 details of about 500,000 customers had been harvested by hackers. Now, almost a year later, BA is being forced to pay up—and the data theft is costing it a pretty penny! Companies that use the services of Indian tech service provider Wipro and thus violate their data protection obligations are also facing severe penalties2 . Since 2017, the IT supplier has increasingly been the target of cybercriminals, who home in on Wipro’s customers, among them Internet providers, insurance companies, and energy utilities. What is the common denominator in these two cases? Weaknesses in the supply chain—a risk that many suppliers and companies underestimate. But how to avoid them?
Comprehensive study of 100 business decision makers in Singapore reveals the role corporate culture and employee education play in successful cybersecurity practices