government healthcare social media service provider fine education finance dark web retail law enforcement web telecoms travel manufacturing phama operating system insurance legal charity app tech gaming publishing transport utilities
story hacked malware unauthorised access ransomware vulnerability accidental disclosure phishing unsecured database poor security insider threat unsecured server hacked email lost device website hacked identity theft ddos stolen documents Trojans financial inside job spear phishing RDP spyware skimming
cyber attack privacy breach notification security flaw legislation poor operations user credentials physical security customer data third party Cryptocurrency enforcement email hacked insecure storage court action encryption fraud VPN passwords zero day 3rd parties state hacking employee data remote working stolen data

Unknown fined 20,000 Euros for breaching Art. 15 GDPR - Insufficient fulfilment of data subjects rights
Google Inc. fined 50,000,000 Euros for breaching Art. 13 GDPR, Art. 14 GDPR, Art. 6 GDPR, Art. 5 GDPR - Insufficient legal basis for data processing
Private person fined 2,200 Euros for breaching Art. 5 (1) a) GDPR, Art. 5 (1) c) GDPR, Art. 6 (1) GDPR, Art. 13 GDPR - Insufficient legal basis for data processing
Unknown fined 3,200 Euros for breaching Art. 12 (4) GDPR, Art. 15 GDPR, Art. 18 (1) c) GDPR, Art. 13 GDPR - Insufficient fulfilment of data subjects rights
Knuddels.de fined 20,000 Euros for breaching Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
HSKSG Chartered Accountants Tax Accountants and Business Advisers Nottingham Derby Uttoxeter
FCA fines Tesco Bank £16.4m for failures in 2016 cyber attack | FCA
Private car owner fined 300 Euros for breaching Art. 5 (1) a) GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
Public Hospital fined 400,000 Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Pacific Pulmonary Medical Group
National Diagnostic Imaging US Teleradiology Company
Opening a Can of Whoop Ads Detecting and Disrupting a Malvertising Campaign Distributing Backdoors Mandiant
Unknown fined 118 Euros for breaching Art. 6 GDPR - Insufficient legal basis for data processing
Social Insurance Agency fined 50,000 Euros for breaching Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Madrileña Red de Gas fined 12,000 Euros for breaching Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Slovak Telekom fined 40,000 Euros for breaching Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Unknown fined Unknown Euros for breaching Art. 5 (1) f) GDPR, Art. 32 GDPR - Insufficient technical and organisational measures to ensure information security
Restaurant (SANTI 3000, S.L.) fined 9,600 Euros for breaching Art. 5 (1) a) GDPR, Art. 6 GDPR - Insufficient legal basis for data processing
ENDESA (energy supplyer) fined 60,000 Euros for breaching Art. 5 (1) f) GDPR - Insufficient legal basis for data processing
Vodafone España, S.A.U. fined 27,000 Euros for breaching Art. 5 (1) d) GDPR - Insufficient fulfilment of data subjects rights
Debt collecting agancy (GESTIÓN DE COBROS, YO COBRO SL) fined 60,000 Euros for breaching Art. 5 (1) f) GDPR - Insufficient legal basis for data processing
Vodafone España, S.A.U. fined 5,000 Euros for breaching Art. 5 (1) d) GDPR - Non-compliance with general data processing principles