A cyber attack that revealed the data of tens of millions of UK voters is thought to have been orchestrated by Russia, prompting concerns that it was an attempt to undermine democracy.
The Electoral Commission acknowledged that hackers had gained access to files containing the names and addresses of the 40 million persons registered to vote between 2014 and 2022 in reference to copies of electoral registers.
They expressed regret to individuals impacted and assured the public that "significant" steps had been taken to strengthen the security of the systems used by the watchdog.
TPRM report: https://scoringcyber.rankiteo.com/company/the-electoral-commission
"id": "the71710823",
"linkid": "the-electoral-commission",
"type": "Data Leak",
"date": "08/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '40 million voters',
'industry': 'Government',
'location': 'United Kingdom',
'name': 'Electoral Commission',
'type': 'Government Agency'}],
'data_breach': {'number_of_records_exposed': '40 million',
'personally_identifiable_information': 'Names and addresses',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personal Information'},
'description': 'A cyber attack that revealed the data of tens of millions of '
'UK voters is thought to have been orchestrated by Russia, '
'prompting concerns that it was an attempt to undermine '
'democracy.',
'impact': {'data_compromised': 'Names and addresses of 40 million persons '
'registered to vote between 2014 and 2022'},
'motivation': 'Undermine democracy',
'response': {'remediation_measures': 'Significant steps to strengthen the '
'security of the systems'},
'threat_actor': 'Russia',
'title': 'Cyber Attack on UK Voter Data',
'type': 'Data Breach'}