Esme brings a wealth of knowledge and experience to our website, specializing in all aspects of DarkWeb security. With a deep understanding of the intricate workings of the DarkWeb and its associated cybersecurity risks, Esme curates insightful and informative content for our readers.
Latest posts by Esme Greene (see all)
- “Ducktail” Hackers Target Facebook - September 28, 2023
- Okta Breach: Super Admin Hack - September 24, 2023
- Rackspace: $10.8M Cloud Shift - September 23, 2023
The UK Electoral Commission acknowledged today that their systems had been hacked a year ago. The attackers apparently got access to the commission’s networks in August 2021, but harmful behavior wasn’t discovered until October 2022, according to the evidence supplied.
The Course of the Attack
In the course of the assault, hackers gained access to information, including the names and addresses of people who registered to vote in the UK between 2014 and 2022 as well as the identities of individuals who were registered as abroad voters. The actual number of those who were impacted was not provided by the commission.
The hackers also had accessibility to the commission’s administration system, email, and duplicates of the electoral rolls during the hack. Copies have been utilized “for study purposes and to determine the admissibility of donations to political parties,” according to the commission.
cr
The Response
The board claims that both the electoral process and people’ rights to participate in democratic elections were unaffected by the data breach. Organizations are compelled by UK data protection rules to immediately inform the public about hacks. The event, according to the commission, was detected nine months ago, in October 2022. According to the legislation, late notices can incur fines of up to 2% of the company’s global sales, or £8.7 million ($11.1 million).
The commission stated that “the enormous quantity of private information that was possibly seen or stolen” during the hack led it to decide to disclose this event. The panel, however, did not state if the offenders’ motivations were a need for financial gain or a desire to obtain information.
The National Cyber Security Center (NCSC), which offers professional assistance and direction on system recovery, and the Commission actively collaborate on projects. The Office of Information Affairs (ICO), which is also investigating the event, promised to deliver the findings as soon as possible.