Britain’s data watchdog fined Yahoo UK Services Ltd 250,000 ponds for a cyber-attack in November 2014. Yahoo, whose assets were acquired by Verizon Communications Inc, reported having over 500 million of its accounts hacked back in 2016. The accounts hacked included names, email addresses, telephone numbers, dates of birth, passwords, and security questions and answers.
The Information Commissioner’s Office (ICO) focused on the 515,121 UK accounts in London-based Yahoo UK services oversaw as a data controller, it said. They led an investigation and found Yahoo UK services failed to protect the data and took steps to make sure Yahoo Inc complied with proper data protection standards.
“The failings our investigation identified are not what we expect from a company that had ample opportunity to implement appropriate measures,” said ICO’s Deputy Commissioner of Operations James Dipple-Johnstone.
Yahoo’s European regulator has ordered to make privacy changes after the incident involving one of the largest data breaches impacting European citizens ever. Ireland’s Data Protection Commissioner, the ones leading the European regulation on the privacy concerns of Yahoo, said Yahooo’s data processing operations last week did not meet standards required by European law. Yahoo UK has not made any comments.