View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
January 26, 2016updated 30 Aug 2016 3:18pm

HMRC warned cyber breach could cost billions, as tax return deadline approaches

News: Survey reveals the full extent of the compensation Brits expect if their data is stolen during a cyber attack.

By Charlotte Henry

As the deadline for filing tax return looms ever closer, a new survey has revealed that a cyber attack on HMRC that caused the loss of personal and financial data would cost it billions in compensation.

Digital authentication provider MIRACL surveyed 1000 UK consumers, and found that three-quarters of them would expect to receive compensation in the event that such data was stolen on the back of a breach against HMRC.

The average amount of compensation respondents expected to receive was £1,316. Given that 10m people are expected to complete their online tax return by the deadline of January 31st that would leave HMRC with a potential compensation bill exceeding £13bn.

Brian Spector, CEO at MIRACL, said: "Getting their hands on all the personal and financial data involved in a tax return is a cyber criminal’s dream. Armed with an individual’s banking and financial history, their employment information, date of birth, address and login details, a criminal could carry out a sophisticated identity theft. For instance, they could potentially take out a mortgage in that person’s name."
HMRC would face an even bigger compensation bill were this to happen.

The British Bankers’ Association found that the average value of a mortgage approved for house purchase in the UK was £175,700, meaning that Brits are in fact underestimating the value of identity theft by £174,384.

Despite warning consumers to stay vigilant, Spector said that Government cyber security measures have improved. "Government is now implementing stronger security measures through its Gov.UK Verify portal, which offers highly secure multi-factor authentication to protect

UK citizens when they disclose personal information online," he said.

Content from our partners
Sherif Tawfik: The Middle East and Africa are ready to lead on the climate
What to look for in a modern ERP system
How tech leaders can keep energy costs down and meet efficiency goals

The cost of a cyber security breach goes beyond compensation too. 85% said that they would not use a website or online service again if data was stolen from it. While, avoiding using HMRC is more difficult than a commercial firm, this illustrates clearly the reputational damage suffered to organisations that are breached.

Spector said: "Companies like TalkTalk who suffer a serious data breach face a multi-headed monster of problems. Not only are they presented with huge compensation claims from victims, but they also have to deal with serious reputational damage."

He said that such incidents are "a real threat to an organisation’s survival."

TalkTalk suffered 7% of its broadband customer base moving over to a different provider in the last three months in the wake of a massive cyber attack that resulted in 4% of its customers’ data been stolen.

Topics in this article :
Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU