Welcome to the third edition of our Fraud and Cyber Insight – a quarterly update from our fraud and cyber experts on key developments across the tech, cyber and fraud sphere and practical considerations for businesses to become more fraud and cyber resilient.
Following on from an article contained in our first edition on Authorised Push Payment (APP) fraud, we look at the recently published draft statutory instrument to implement a new policy on APP fraud. APP fraud affects around 200,000 people a year and our follow up article reviews the proposed provisions of the draft instrument.
Cybersecurity continues to be a concern high on the agenda for many businesses and charities. The Department for Science Innovation and Technology (DSIT) has published its annual survey results focusing on reported cyber-attacks and the most common that businesses and charities are experiencing as well as resilience looking at the current protections in place by organisations. Our Cyber team have set out some key takeaways to assist businesses and charities in enhancing their cyber resilience.
Housing associations have flagged cyber security as a strategic concern and there is a greater awareness of the need to protect residents and their data. As such, regulators have increased their focus on data management and security within the sector and it is important housing associations consider how they are collecting and using residents data. We consider the regulators' requirements for data governance and how organisations can ensure compliance with data protection law.
The team have also considered the recent judgment handed down in Farley and 473 others v Paymaster (1836) Limited (trading as Equiniti) [2024] EWCH 383 (KB). This involved a class action by 474 current and former police officers who annual pension benefit statement was sent to an outdated address. What does this tell us about the lessons that can be learned from this data protection claim?
If you have any suggestions or requests for future editions of the Trowers Fraud and Cyber Insight, please get in touch with one of the team.
Click the links below to view our latest insights:
Cyber Governance Code of Practice – why do we need it and what can it achieve?
The DSIT has sought views on a draft Cyber Governance Code of Practice. Our article looks at why we need this, what information the DSIT were seeking and how businesses can strengthen cyber defences.
Cyber Security Breaches Survey 2024
The annual Cyber Security Breaches Survey looks at the latest statistics on UK businesses and charities' cyber resilience. The Cyber team have produced a bitesize report highlighting the key takeaways and how organisations can mitigate cyber risk.
The importance of robust cyber and data governance in the housing sector
Cybersecurity has been flagged as the primary strategic concern by housing associations in 2024. This article considers the Information Commissioner's Office guidance, the Department for Levelling Up, Housing and Communities and the Regulator of Social Housing consultations, which look at the rights of residents and the provision of appropriate housing and services.
Online Safety: in the news and on the statute books
The Online Safety Act 2023 received Royal Assent in October 2023 and is designed to protect internet users from harmful content. This article explores what the Online Safety Act is about and its requirements
Paymaster and the Post – the latest case on group actions for data protection breaches
In February 2024, judgment was handed down in Farley and 473 others v Paymaster (1836) Limited (trading as Equiniti) [2024] EWCH 383 (KB). Equiniti had sent the annual pension benefit statement to the out-of-date addresses of 474 police officers. The officers brought a claim for misuse of private information and breaches of data protection legislation.
A statutory silver lining for victims of APP fraud?
The Supreme Court decision of Philipp v Barclays Bank UK PLC [2023] UKSC 25 narrowed the duty of care banks owe to their customers who fall victim to an APP scam. This article looks at the draft statutory instrument implementing new policy surrounding APP fraud.
Cybersecurity and AI: next steps in mitigating risk
As the use and deployment of AI continues to develop at pace, the DSIT has sought views on its proposed voluntary code of practice for AI Cyber Security. Read our article to find out how to get involved and the timescales.
