![]() However, it appears that cyber-attackers have been able to access this data through its systems. However, a small number of other customers – understood to include the Metropolitan police and GMP – provide employee data to Digital ID so the firm can print the cards for them.Ī source said most of these identity cards were inactive when they left Digital ID’s headquarters. ![]() The BBC is understood to be one such client. The company says most of its clients buy its printers and then produce identity cards at their own offices, meaning they are not transferring huge amounts of employee data to a third party. He said: “If you’ve got a pass that’s been made by Digital ID then there is absolutely is the chance that your personal details that were used to generate that pass been caught up in this ransomware attack and could eventually be leaked online if the company chooses not to pay the ransom.”Īsked if this could run into tens of thousands of people, Lewis stressed he did not know the size of the company’s database, but he added: “Given their clients, you could be talking those kind of numbers.”ĭigital ID said it notified cyber experts last month when it became aware of the incident. ![]() Lewis, now head of threat analysis at the cybersecurity firm Darktrace, said it likely that the firm’s entire customer base would have been hacked. In a sign of the seriousness of the attack, the NCA said it was working alongside the National Crime Security Centre and the Information Commissioner’s Office “to fully understand the impact of the incident and support those organisations whose data has been accessed”. The firm insisted the majority of its customers were not affected. Toby Lewis, a former incident manager at the National Cyber Security Centre, said it was likely that details of staff in other organisations that the firm supplies would also have been compromised. The National Crime Agency (NCA) said it had launched a criminal investigation into the breach at the Stockport-based firm, Digital ID, which makes identity cards and lanyards for a number of UK organisations including several NHS trusts and universities. The details of officers’ warrant cards – including names, ranks, photos and serial numbers – are thought to have been taken in the ransomware attack on a third-party supplier used by both forces.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |