Locked up: UK's Labour Party data 'rendered inaccessible' on third-party systems after cyber attack

As membership website goes TITSUP*


The UK's Labour Party, the official opposition to the country's ruling Conservatives, has suffered a humiliating data breach.

Members of the party were sent notice of the issue mid-afternoon UK time, which confirmed a "third party that handles data on our behalf has been subject to a cyber incident."

The email, titled "Private and Confidential," read: "On 29 October 2021, we were informed of the cyber incident by the third party. The third party told us that the incident had resulted in a significant quantity of Party data being rendered inaccessible on their systems."

We have asked Labour if it's referring to ransomware, and if so, if a ransom demand has been made or paid.

The email continued:

As soon as the Party was notified of these matters, we engaged third-party experts and the incident was immediately reported to the relevant authorities, including the National Crime Agency (NCA), National Cyber Security Centre (NCSC) and the Information Commissioner’s Office (ICO).

The Party continues to work closely with each of these authorities. The Party is also working closely and on an urgent basis with the third party in order to understand the full nature, circumstances and impact of the incident. The Party's own data systems were unaffected by this incident.

Labour said the compromised data includes information provided to the political party by its members, registered and affiliated supporters, and other individuals who have provided their information to the party, such as former members.

"The full scope and impact of the incident is being urgently investigated," it said.

Labour Party news website LabourList said that membership website labourmembership.com had been pulled offline in recent days because of the cyber "incident."

The website was still unreachable at the time of publication.

The party has been targeted before.

In 2019, its campaign site was hit by a "sophisticated and large-scale cyber-attack". A spokeswoman said at the time: "We have experienced a sophisticated and large-scale cyber-attack on Labour digital platforms. We took swift action and these attempts failed due to our robust security systems. The integrity of all our platforms was maintained and we are confident that no data breach occurred."

Last year, the Party was also caught up in the attack on cloud CRM provider Blackbaud.

An NCSC spokesperson said:

"We are aware of this issue and are working with the Labour Party to fully investigate and mitigate any potential impact.

"We would urge anyone who thinks they may have been the victim of a data breach to be especially vigilant against suspicious emails, phone calls or text messages and to follow the steps set out in our data breaches guidance." ®

* Total Inability To Support Underdogs in Politics

Similar topics

Broader topics

Narrower topics


Other stories you might like

  • Meg Whitman – former HP and eBay CEO – nominated as US ambassador to Kenya

    Donated $110K to Democrats in recent years

    United States president Joe Biden has announced his intention to nominate former HPE and eBay CEO Meg Whitman as Ambassador Extraordinary and Plenipotentiary to the Republic of Kenya.

    The Biden administration's announcement of the planned nomination reminds us that Whitman has served as CEO of eBay, Hewlett Packard Enterprise, and Quibi. Whitman also serves on the boards of Procter & Gamble, and General Motors.

    The announcement doesn't remind readers that Whitman has form as a Republican politician – she ran for governor of California in 2010, then backed the GOP's Mitt Romney in his 2008 and 2012 bids for the presidency. She later switched political allegiance and backed the presidential campaigns of both Hillary Clinton and Joe Biden.

    Continue reading
  • Ex-Qualcomm Snapdragon chief turns CEO at AI chip startup MemryX

    Meet the new boss

    A former executive leading Qualcomm's Snapdragon computing platforms has departed the company to become CEO at an AI chip startup.

    Keith Kressin will lead product commercialization for MemryX, which was founded in 2019 and makes memory-intensive AI chiplets.

    The company is now out of stealth mode and will soon commercially ship its AI chips to non-tech customers. The company was testing early generations of its chips with industries including auto and robotics.

    Continue reading
  • Aircraft can't land safely due to interference with upcoming 5G C-band broadband service

    Expect flight delays and diversions, US Federal Aviation Administation warns

    The new 5G C-band wireless broadband service expected to rollout on 5 January 2022 in the US will disrupt local radio signals and make it difficult for airplanes to land safely in harsh weather conditions, according to the Federal Aviation Administration.

    Pilots rely on radio altimeter readings to figure out when and where an aircraft should carry out a series of operations to prepare for touchdown. But the upcoming 5G C-band service beaming from cell towers threatens to interfere with these signals, the FAA warned in two reports.

    Flights may have to be delayed or restricted at certain airports as the new broadband service comes into effect next year. The change could affect some 6,834 airplanes and 1,828 helicopters. The cost to operators is expected to be $580,890.

    Continue reading

Biting the hand that feeds IT © 1998–2021