On January 13, 2020, England’s Information Commissioner’s Office (ICO) fined electrical and telecommunications retailer and services company Dixons Carphone £500,000 (equivalent to $651,425.00) after malicious malware was discovered in 5,390 point of sale (POS) systems located at the company’s Currys PC World and Dixons Travel stores.
The breach occurred between July 2017 and April 2018, during which hackers gained access to 5.6 million payment cards and the personal information of over 14 million customers. The ICO found that Dixon had failed to implement proper data security measures, including failures to properly update debugging software and implement proper security tests.
