WGPlus (Archive)

Not an obvious target, but data could provide access to more important systems

An STFC events registration site was the victim of a cyber-attack by unknown perpetrators earlier this month.  The hackers extracted a registration database, containing personal non-financial information from approximately 12,000 registrations.

STFC has written to all individuals listed on this database to advise them of the cyber-attack, to apologise for the release of their data, and to provide information on the enhanced security features and other actions they have taken in response.

Although the database does not contain financial information, they are strongly advising affected individuals that if the password used for this service is also used for other cloud services (e.g. shopping or banking), they should change those passwords as soon as possible.
Researched Links:

STFC:  Update on cyber-attack

Ensuring the safety of the UK

ICO:  “Would you like us to email you a receipt?”

ScotGov:  Cybercrime is coming to town

Spotlight on women at Serco – Anita’s story