Among other things, the regulator said it had failed to ensure proper patch management procedures were actively applied to all devices, and nor had it changed an insecure password on a dormant user account that was exploited by the cyber criminals.
This was a clear and avoidable error from London Borough of Hackney, resulting in mass data loss and severely detrimental impact on residents. Personal information fell into attackers' hands, and essential systems were offline for months.
[
Collection
]
[
|
...
]