Stay updated with the latest news from The Electoral Commission by signing up for our free updates. You’ll receive a myFT Daily Digest email every morning, summarizing all the important information.
The Electoral Commission, the UK’s elections watchdog, has recently fallen victim to a sophisticated cyber attack. Hackers gained unauthorized access to the commission’s systems and managed to obtain copies of the electoral register, a database that contains personal information of registered voters, between 2014 and 2022. The breach remained undetected for over a year, with suspicious activity only being identified in October of last year. The commission has been unable to determine the identity of the attackers, as no claims have been made by any groups or individuals.
The compromised electoral register included sensitive details such as names, home addresses, and dates of individuals reaching voting age, along with information on overseas voters. However, the data of individuals who registered to vote anonymously remained unaffected. The Electoral Commission has reassured the public that the breach does not pose a direct threat to the security of UK elections or the ability to manipulate voting outcomes. Despite this, affected individuals are advised to remain vigilant for any potential unauthorized use or release of their personal information.
While the commission downplays the risk to individuals, it acknowledges the possibility of the breached data being matched with other publicly available information, potentially allowing for the inference of behavioral patterns or profiling. Shaun McNally, the chief executive of the Electoral Commission, stated that due to the decentralized nature of the UK’s democratic process and its reliance on paper documentation and counting, it would be extremely difficult for a cyber attack to directly influence election outcomes. Nevertheless, the incident serves as a reminder that organizations involved in elections are attractive targets and must maintain constant vigilance to safeguard the integrity of the electoral process.
The Electoral Commission’s disclosure of the cyber attack is in compliance with UK data protection laws, which mandate public bodies to inform individuals if their data has been compromised. The commission had stored “reference copies” of the electoral register for research purposes and to facilitate checks on political donations. In addition to the voter data, the hackers also gained access to the commission’s email system and “control systems,” potentially compromising email addresses and phone numbers of individuals who corresponded with the commission.
The National Cyber Security Centre, a division of GCHQ responsible for assisting UK companies in combating cyber crime, and the Information Commissioner’s Office (ICO), the data protection regulator, have been notified of the breach. Security experts have been engaged to investigate and reinforce the commission’s systems, ensuring that appropriate measures are taken to prevent future incidents.
The ICO has assured the public that they are treating this matter with urgency and are actively investigating the breach to alleviate concerns for those potentially affected.
Denial of responsibility! VigourTimes is an automatic aggregator of Global media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, and all materials to their authors. For any complaint, please reach us at – [email protected]. We will take necessary action within 24 hours.
