Hackers launched a ransomware attack targeting one of the United Kingdom’s largest law enforcement agencies, the Greater Manchester Police (GMP). This cyberattack exposed the personal details of numerous British police officers and staff.
Furthermore, the GMP has identified the attack as directed at a third-party supplier that serves various organizations, including the GMP. While the breach doesn’t seem to include financial information, it is regarded as an extremely serious security incident.
Colin McFarlane, the assistant chief constable of the Greater Manchester Police, stated that the stolen data may comprise badges with officers’ names, ranks, photos, and serial numbers. Some of these photos also contained geolocation data.
The GMP has notified the UK’s Information Commissioner’s Office, and the National Cyber Security Center is collaborating with other law enforcement agencies to assess the extent of the cyber incident.
This incident is part of a broader trend of personal data breaches within British law enforcement agencies. In late August, London’s Metropolitan Police encountered a similar situation, where a third-party security breach exposed sensitive information about officers and staff, prompting the force to enhance security measures.
Additionally, constabularies in Norfolk and Suffolk inadvertently leaked information about 1,230 individuals in mid-August. Before that, the Police Service of Northern Ireland accidentally disclosed details of 10,000 officers and staff through an online spreadsheet. These incidents underscore the escalating cyber threats facing law enforcement agencies in the UK.
