Authorities investigate Labour cyberattack that impacted ‘significant quantity’ of supporters’ data

Written by Adam Payne on 4 November 2021 in News

NCA probes incident in which personal info of members and supported may have been breached

Credit: Steve Parsons/PA Archive/PA Images

The National Crime Agency is investigating how a "significant quantity" of data possessed by the Labour Party, including the personal details of party members and supporters, has been breached in a "cyber incident".

An unnamed IT firm which handles data on Labour's behalf informed the party that large volumes of data had been "rendered inaccessible on their systems," Labour said on Wednesday in a statement.

The party is "working closely and on an urgent basis" with the third-party company to ascertain the nature and impact of the incident, it added.

Related content

The party confirmed that some of the data affected by the breach includes information provided to Labour by members, registered and affiliated supporters, and other individuals who shared their details with the party.

Labour said it had informed the National Crime Agency (NCA), National Cyber Security Centre (NCSC) and Information Commissioner’s Office (ICO) about the incident.

In an email to those potentially affected, Labour urged them to be "especially vigilant against suspicious activity" like dubious emails, phone calls and text messages.

An NCA spokesperson said: "We are aware of this issue and are working with the Labour Party to fully investigate and mitigate any potential impact. We would urge anyone who thinks they may have been the victim of a data breach to be especially vigilant against suspicious emails, phone calls or text messages and to follow the steps set out in our data breaches guidance.

Labour added: “The party takes the security of all personal information for which it is responsible very seriously. It is doing everything within its power to investigate and address this incident in close liaison with law enforcement, the Information Commissioner’s Office and the affected third party."


About the author

Adam Payne is senior correspondent at PublicTechnology sister publication PoliticsHome, where a version of this story first appeared. He tweets as @adampayne26.

Share this page




Please login to post a comment or register for a free account.

Related Articles

‘A core part of national infrastructure’ – ministers consider regulating to make the cloud safer
27 May 2022

Consultation launched seeking feedback on risks and mitigations for systems that now underpin a wide range of ‘essential services’ 

Fraud challenges see HMRC and DWP named among ‘departments of concern’
27 May 2022

Public spending watchdog points to issues with controls on fraud and error

EXCL: Wall of silence surrounds plan for nationwide collection of citizens’ internet records
26 May 2022

Online notice reveals controversial trials are to be expanded into a national service – about which government, law enforcement, watchdogs and all the UK’s major ISPs declined to answer questions...

ICO hits facial recognition firm with £7.5m fine and order to delete all UK data
25 May 2022

Regulator finds that collection of online images was not fair, transparent or lawful