UK Fines Law Firm 60,000 Pounds for Ransomware Data Breach

The UK Information Commissioner’s Office fined Liverpool-based law firm DDP Law 60,000 pounds for GDPR violations related to a 2022 ransomware attack. The breach, which exposed sensitive client information, was exacerbated by the firm’s use of an outdated account, lack of risk assessment, and delayed notification to regulators.