Threat Watch

U.K. Labour Party Suffers Data Breach Linked to Ransomware at Third-Party

The U.K. Labour Party has become the victim of another data breach after a third-party data manager suffered a ransomware attack. “On 29 October 2021, we were informed of the cyber incident by the third party. The third party told us that the incident had resulted in a significant quantity of Party data being rendered inaccessible on their systems,” a portion of the breach notification found on their website said. The notification also stated that the proper authorities have been notified and their investigations are ongoing. Since information is still being gathered, the only information known at this time is that data involved in the incident includes information provided by members, registered and affiliated supporters, and others who have provided their info to the Party.

ANALYST NOTES

The Labour Party advises members potentially affected by this incident to be vigilant when answering suspicious emails, phone calls, or text messages, as well as to enable two-factor authentication (2FA) where possible to protect their online accounts. It is important to note that individuals should report any suspicious activity to the Party and law enforcement as well. More information will likely be released on this incident in the coming weeks, so it is important for those that may have had their information included to follow this story for updates.

https://www.bleepingcomputer.com/news/security/uk-labour-party-discloses-data-breach-after-ransomware-attack/amp/