Ofcom has confirmed that they were one of the victims of the cyber attack on MOVEit.
MOVEit provides software for moving sensitive files, such as payroll and banking information. Following the attack, confidential data of several companies that Ofcom regulates, as well as personal information of over 400 of their employees was downloaded.
The attack occurred when MOVEit was breached by hackers exploiting a critical vulnerability in their software.
In a statement, Ofcom said:
A limited amount of information about certain companies we regulate – some of it confidential – along with personal data of 412 Ofcom employees, was downloaded during the attack.
The security of commercially confidential and sensitive personal information provided to Ofcom is taken extremely seriously.
We took immediate action to prevent further use of the MOVEit service and to implement the recommended security measures. We also swiftly alerted all affected Ofcom-regulated companies, and we continue to offer support and assistance to our colleagues.
No Ofcom systems were compromised during the attack.
The attack just goes to highlight that any company, no matter the size or job they do, can fall victim to these kinds of attacks.
Add a Comment