The Spanish Data Protection Agency (AEPD) has imposed a fine of 1.3 million euros on Telefónica for serious deficiencies in the protection of its customers’ data, as published andlDiario.es.
Why is it important. This case and its subsequent journey have revealed critical vulnerabilities in the security of the largest telecommunications operator in Spain, affecting the privacy of more than one million users.
In figures:
- Sanction of 1.3 million euros.
- 800,000 euros for not guaranteeing adequate security.
- The other 500,000 euros, for not minimizing the risks.
The context. In September 2022, a cyber attacker operating from Lithuania managed to access a database with information on six million customers, compromising technical data of WiFi connections and personal devices, including access credentials.
Between the lines. The AEPD has rejected Telefónica’s argument, which stated that the compromised data was insignificant. The regulator has considered that the company showed “serious negligence” given its size and the volume of sensitive information it handles.
The teleco has appealed the sanction before the National Court, which has accepted the appeal for processing, according to what has been learned. WorldOfSoftware thanks to sources from the operator itself. Telefónica maintains, according to the resolution, that the exposed data was not sensitive nor could it cause “serious consequences” for users.
Go deeper. The breach was detected when a manager identified an anomalous pattern of mass queries from the account of an employee who was on vacation.
Despite the anomaly, Telefónica took four days to block access, allowing the attacker to continue extracting information.
In summary. This case sets a precedent for the responsibility of large companies in protecting their clients’ data, showing that negligence in cybersecurity, even when charging for apparently inconsequential data theft, can have important economic consequences.
In WorldOfSoftware | I want to change the router password, where do I start?
Featured image | Telephone
