The Information Commissioner’s Office (ICO) has warned organisations to review their websites to ensure they are protected from a form of hacking attack known as “SQL injection” – the nature of which was explained by the ICO in a recent blog post. SQL injection is the most common form of online attack and exploits poor website coding. The warning comes as the ICO fines an online hotel booking business for flaws on its website which were exploited by hackers resulting in the payment card details of 3,814 customers being compromised.

ICO news release – 5 November