The most significant UK data breaches in 2018


Hacking & data theft is on the rise.

In August 2018 globally, there were approximately 215 million leaked data records. Seldom does a week go by without a major data breach being reported. As organisations continue to struggle to secure their valuable data against an ever-growing range of threats, the fear of a breach is keeping any chief information security officer (CISO) worth their salt up at night.

Carrying out a GDPR Risk assessment will help you identify your company’s IT & procedural risks and how to mitigate them. With over 34 years IT experience our GDPR tutor and risk assessor brings a wealth of knowledge & experience to your company.

The EU's General Data Protection Regulation (GDPR) has forced many of them to improve their data protection practices, but high-profile breaches are still occurring. Here are some of the more significant recent breaches within the United Kingdom.

Facebook allowed hackers to steal Facebook tokens to access peoples accounts.


On September 25th 2018, Facebook discovered a security issue affecting almost 50 million accounts. Hackers exploited a vulnerability in Facebook’s code which allowed hackers to steal Facebook access tokens that could then be used to take over people’s accounts.

Facebook could face £1.25 billion fine under GDPR for their latest data breach.

Conservative Party conference app had security flaw.


As the Conservative Party conference was about to begin, those in attendance found that there was a glaring security hole in the official conference app - allowing a journalist to access Boris Johnson's mobile number.

British Airways: 380,000 payment cards affected


British Airways said personal and financial details of approximately 380,000 customers making or changing bookings had been compromised, did not include travel or passport details.

British Airways could face a £420 million fine under GDPR for their current data breach.

Butlin's: 34,000 holidaymakers at risk


As many as 34,000 guests at British holiday resort Butlin's have had their personal details accessed by hackers in a major data breach.

No payment details were accessed according to the company however names, addresses, phone numbers and email addresses were all compromised.

Massive Dixons Carphone hack ten times worse than originally thought


The data breach discovered by Dixons Carphone in June 2018 was much more severe than it had originally thought, putting the compromised accounts number at 10 million compared to the earlier estimate of 1.2 million.

It maintains that there has been no evidence of fraud, but the original breach was notable in that in addition to personal information being stolen, attackers also made off with payment card details - as many as 5.9 million. Most of these were protected by chip and pin but some were not.

Ticketmaster suffers potentially massive breach


Ticketing and events business Ticketmaster UK has said that up to five percent of its global customer base, outside of the USA, might have had their personal details and payment details compromised as part of an attack on a third party the company used.

Their Twitter account appears to confirm the breach.

In a statement, the company said that Ticketmaster UK “identified malicious software on a customer support product hosted by Ibenta Technologies, an external third-party supplier to Ticketmaster.”

FREE GDPR Training

Has your company had any GDPR Training? Do you know the facts? Do you know how GDPR will affect your business? Our FREE training is designed to help you understand the facts so you can implement changes as required to minimise your business risks.

Our presenter has over 34 years practical experience and  can help minimise your companies GDPR compliance issues. We don't blind you with science but give practical advice and solutions that is clearly explained.

GDPR Risk Assessment

Have you completed the Information Commissioners Office (ICO) GDPR checklist? Have you completed the Data Mapping exercise? Can you justify WHY you hold someone's personal data?  Do you know how long you can hold  someone's personal data? Do you know  where all personal data is housed?

Let JDI Computer Services carry out a GDPR Risk Assessment on your company and identify any weak points before any issues happen within your company.

Contact Us

Drop us a line!

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Better yet, see us in person!

We love our customers, so feel free to visit during normal business hours.

JDI Computer Services

5 Church Walk, Preston, Preston, PR2 6SZ, United Kingdom

01772 704043/ 07889 948484


Open today

08:30 – 18:00