A major data breach occurred in February 2022 when a member of the armed forces inadvertently shared a spreadsheet containing the names of thousands of Afghans who were in danger from the Taliban and had applied for sanctuary in Britain. The leak put the lives of up to 100,000 Afghans at risk and prompted a top secret resettlement scheme projected to cost billions. The official responsible for the leak is still employed by the government, and the incident was kept under wraps for nearly two years due to a superinjunction.
TPRM report: https://scoringcyber.rankiteo.com/company/uk-ministry-of-defence
"id": "uk-751071625",
"linkid": "uk-ministry-of-defence",
"type": "Breach",
"date": "7/2025",
"severity": "100",
"impact": "7",
"explanation": "Attack that could injure or kill people"{'affected_entities': [{'customers_affected': '18,700 applicants',
'industry': 'Defense',
'location': 'United Kingdom',
'name': 'Ministry of Defence',
'type': 'Government'}],
'attack_vector': 'Human Error',
'data_breach': {'file_types_exposed': 'Spreadsheet',
'number_of_records_exposed': '33,000',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Email Addresses',
'Phone Numbers',
'Case Statuses']},
'date_detected': 'August 2023',
'date_publicly_disclosed': 'September 2023',
'description': 'A member of the armed forces inadvertently shared a '
'spreadsheet containing the names of thousands of Afghans '
'seeking sanctuary in Britain, putting their lives at risk.',
'impact': {'data_compromised': '33,000 records, including names, email '
'addresses, phone numbers, and case statuses'},
'initial_access_broker': {'entry_point': 'Email'},
'investigation_status': 'Ongoing',
'motivation': 'Unintentional',
'post_incident_analysis': {'root_causes': 'Human Error'},
'references': [{'source': 'The Independent'}],
'threat_actor': 'Internal Employee',
'title': 'Ministry of Defence Data Leak',
'type': 'Data Breach',
'vulnerability_exploited': 'Inadvertent Data Sharing'}