First GDPR Extortion Attempt?

Interesting news, I predicted at the start of 2018 that we may see GDPR extortion…

Superdrug (a large high-street pharmacy chain in the UK) has warned online customers…in what could be the first GDPR-related extortion attempt computerweekly.com/news/252447313…

Here’s what I said:

I suspect that this will be the first of many. I have also predicted that we will see another type of GDPR attack, this being down to competitors using GDPR as a way to attack their competition in a specific sector. I see it working like this:

Competitor (company A) pays black-hat hackers to hack in and steal personal/financial data and they then leak the data and  report the breach to the ICO (or other local enforcement body).  The victim (company B) gets investigated and fined for the breach; six months later the Competitor (company A) pays for another round of hacking, etc.

Rinse and repeat until the victim goes out of business…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.