Data Breach Hits UK Labour Party
Details Belonging to Its Members Were Disclosed Following a Ransomware Attack.
The Labour Party is a British political party that has been defined as a coalition of social democrats, democratic socialists, and trade unionists. The Labour Party is located on the political spectrum’s center-left.
Since 1922, Labour has been either the ruling party or the Official Opposition in all general elections.
The Labour Party is now the Official Opposition in the United Kingdom’s Parliament, having gained the second-largest number of seats in the 2019 general election.
After contacting appropriate authorities about the incident, the data breach was revealed through a data breach notification published on the party’s website.
On 29 October 2021, we were informed of the cyber incident by the third party. The third party told us that the incident had resulted in a significant quantity of Party data being rendered inaccessible on their systems. As soon as the Party was notified of these matters, we engaged third-party experts and the incident was immediately reported to the relevant authorities, including the National Crime Agency (NCA), National Cyber Security Centre (NCSC) and the Information Commissioner’s Office (ICO). The Party continues to work closely with each of these authorities. The Party is also working closely and on an urgent basis with the third party in order to understand the full nature, circumstances and impact of the incident. The Party’s own data systems were unaffected by this incident.
What information was involved?
We understand that the data includes information provided to the Party by its members, registered and affiliated supporters, and other individuals who have provided their information to the Party. The full scope and impact of the incident is being urgently investigated.
The data affected in the incident comprises information supplied by members, registered and linked supporters, and anyone who has provided the Party with their contact information.
The unfortunate event is still under investigation, and the entire extent and consequences of the data breach are unclear.
As reported by BleepingComputer, in order to secure their online accounts, the Labour Party encourages members who may have been impacted by this event to be cautious when responding to unusual emails, phone calls, or text messages, and to use two-factor authentication (2FA) whenever available.
The Party takes the security of all personal information for which it is responsible very seriously. It is doing everything within its power to investigate and address this incident in close liaison with law enforcement, the Information Commissioner’s Office, and the affected third party. – Labour Party