cyber Cyber Attack

AQA

May 11, 2023 1 min read
AQA

AQA was the target of a cyber-attack, and 10,000 examiners have had their personal information stolen.

The names, addresses, personal phone numbers, and passwords of 64,000 current and former examiners that were stored on some of AQA's online systems have been taken by hackers.

However, the board emphasized that no bank information, student or school data, exam materials, or any other data were stored in the systems that were targeted.

The Information Commissioner’s Office investigated the incident and took the affected systems offline immediately to fix security issues.

Source: https://schoolsweek.co.uk/thousands-of-examiners-personal-details-stolen-in-aqa-cyber-attack/

TPRM report: https://scoringcyber.rankiteo.com/company/aqa

"id": "aqa151324822",
"linkid": "aqa",
"type": "Data Leak",
"date": "04/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': '64,000 current and former '
                                              'examiners',
                        'industry': 'Education',
                        'name': 'AQA',
                        'type': 'Educational Board'}],
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '64,000',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Addresses',
                                              'Personal phone numbers',
                                              'Passwords']},
 'description': 'AQA was the target of a cyber-attack, resulting in the theft '
                'of personal information of 10,000 examiners. The names, '
                'addresses, personal phone numbers, and passwords of 64,000 '
                "current and former examiners stored on some of AQA's online "
                'systems were taken by hackers. No bank information, student '
                'or school data, exam materials, or any other data were stored '
                'in the systems that were targeted. The Information '
                'Commissioner’s Office investigated the incident and took the '
                'affected systems offline immediately to fix security issues.',
 'impact': {'data_compromised': ['Names',
                                 'Addresses',
                                 'Personal phone numbers',
                                 'Passwords'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'Low',
            'systems_affected': 'Online systems storing examiner data'},
 'investigation_status': 'Completed',
 'post_incident_analysis': {'corrective_actions': 'Security issues fixed'},
 'regulatory_compliance': {'regulatory_notifications': 'Investigation by '
                                                       'Information '
                                                       'Commissioner’s Office'},
 'response': {'containment_measures': 'Affected systems taken offline',
              'remediation_measures': 'Security issues fixed'},
 'threat_actor': 'Hackers',
 'title': 'AQA Cyber Attack',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.