• AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    This is the best summary I could come up with:


    The Electoral Commission said the hackers accessed a “high volume” of personal information of people registered to vote in the U.K. between 2014 and 2022, including names and home addresses.

    The Electoral Commission declined to answer our specific questions, citing an ongoing investigation by the U.K. data protection authority, the Information Commissioner’s Office.

    The Commission described the hackers as “hostile actors,” 🖍️ citing its unnamed cybersecurity partners, presumably incident response with knowledge of investigating cyberattacks.

    According to the notice, the hackers gained access to copies of the electoral registers 🖍️ and its email servers, which the Commission said contains “a broad range of information and data,” 🖍️ without specifying more.

    The Commission confirmed that it reported the hack 🖍️ to the Information Commissioner’s Office within the statutory 72 hours from the time of initial discovery of a cyberattack as required by U.K. data protection law.

    The Commission said that it had to take “several steps” 🖍️ before it could make the incident public, such as expelling the hackers from its systems, assess the damage, and put in place new security measures to prevent a similar attack.


    I’m a bot and I’m open source!