Elections watchdog apologises after hack left voters’ details exposed

8 August 2023, 19:34

Ballot box
Ballot box. Picture: PA

Electoral Commission head Shaun McNally said it would be very hard to use a cyber-attack to influence the democratic process.

Details of tens of millions of voters could have been accessed by hackers who targeted the elections watchdog.

The Electoral Commission said there was little risk of “hostile actors” being able to influence the outcome of a vote, but apologised for the breach in its systems.

The hack, which was publicly confirmed on Tuesday, allowed the attackers to access reference copies of electoral registers containing the names and addresses of people registered to vote between 2014 and 2022.

The attack was identified in October 2022, but the hackers had first been able to access the commission’s systems in August 2021.

Shaun McNally, the Electoral Commission’s chief executive, said: “The UK’s democratic process is significantly dispersed and key aspects of it remain based on paper documentation and counting.

“This means it would be very hard to use a cyber-attack to influence the process.

“Nevertheless, the successful attack on the Electoral Commission highlights that organisations involved in elections remain a target, and need to remain vigilant to the risks to processes around our elections.”

He said significant measures had been taken to improve security on the commission’s IT systems.

“We know which systems were accessible to the hostile actors, but are not able to know conclusively what files may or may not have been accessed,” he said.

“While the data contained in the electoral registers is limited, and much of it is already in the public domain, we understand the concern that may have been caused by the registers potentially being accessed and apologise to those affected.”

The hackers were able to access reference copies of the electoral registers, held by the commission for research purposes and to enable permissibility checks on political donations.

The registers held at the time of the cyber-attack include the name and address of anyone in the UK who was registered to vote between 2014 and 2022, as well as the names of those registered as overseas voters.

But they did not include the details of those registered anonymously.

The register for each year holds the details of around 40 million individuals, which were accessible to the hostile actors, although this includes people on the open registers, whose information is already in the public domain.

The National Cyber Security Centre said it had provided the commission with expert advice and support.

A spokesman said: “Defending the UK’s democratic processes is a priority for the NCSC and we provide a range of guidance to help strengthen the cyber resilience of our electoral systems.”

The Information Commissioner’s Office said it was looking into the incident.

“We recognise this news may cause alarm to those who are worried they may be affected and we want to reassure the public that we are investigating as a matter of urgency,” a spokesman said.

“In the meantime, if anyone is concerned about how their data has been handled, they should get in touch with the ICO or check our website for advice and support.”

Labour’s deputy leader Angela Rayner said: “This deeply concerning attack serves as a reminder of the critical importance of Britain’s resilience to cyber-attacks.

“Our democracy is a foundation of our society and every effort must be made to protect it.

“This serious incident must be fully and thoroughly investigated so lessons can be learned.”

By Press Association

More Technology News

See more More Technology News

Openreach van

Upgrade to Openreach ultrafast full fibre broadband ‘could deliver £66bn boost’

Laptop with a virus warning on the screen

Nato countries are in a ‘hidden cyber war’ with Russia, says Liz Kendall

Pat McFadden

Russia prepared to launch cyber attacks on UK, minister to warn

A person holds an iphone showing the app for Google chrome search engine

Apple and Google ‘should face investigation over mobile browser duopoly’

A Google icon on a smartphone

Firms can use AI to help offset Budget tax hikes, says Google UK boss

Icons of social media apps, including Facebook, Instagram, YouTube and WhatsApp, are displayed on a mobile phone screen

Growing social media app vows to shake up ‘toxic’ status quo

Will Guyatt questions who is responsible for the safety of children online

Are Zuckerberg and Musk responsible for looking after my kids online?

Social media apps on a phone

U16s social media ban punishes children for tech firm failures, charities say

Google shown on a smartphone

US Government proposes forcing Google to sell Chrome to break-up tech empire

The logo for Google's Gemini AI assistant

Google’s Gemini AI gets dedicated iPhone app in the UK for the first time

Facebook stock

EU fines Meta £660m for competition rule breaches over Facebook Marketplace

A phone taking a photo of a phone mast

Government pledges more digital inclusion as rural Wales gets phone mast boost

Social media apps displayed on a mobile phone screen

What is Bluesky and why are people leaving X to sign up?

Someone types at a keyboard

Cyber security chief warns Black Friday shoppers to be alert to scams

MPs

Ministers pressed on excluding Chinese firms from UK’s genomics sector

Child with mobile phone stock

Specially designed smartphone for children launches in the UK

More Tech News

See more More Tech News

Drones used to transport blood

Drone blood deliveries could be a possibility thanks to new study

A woman using a mobile phone

Virgin Media O2 launches new mobile plan for people on low incomes

Mike Lynch

Mike Lynch, the Autonomy founder finally cleared of fraud after more than decade

Tinashe in a blue outfit

Tinashe beats Sabrina Carpenter and Billie Eilish to TikTok song of the summer

Mel Morris in a black suit

Playrix bosses and Candy Crush creators top first Sunday Times Gaming Rich List

Screengrab from a SpaceX livestream of the launch of the satellite on a SpaceX Falcon rocket

Images from UK military’s first satellite will be shared with allies

Latest UK News

See more Latest UK News

More weather warnings are in place for Monday after Storm Bert saw five Brits die over the weekend.

Storm Bert bashes Britain: Five die after flooding with more weather warnings in place for Monday
A former British soldier has been captured by Russian forces while fighting for Ukraine, state media has claimed.

Former Brit soldier 'captured by Russia' while fighting in Ukraine

Assisted dying law changes will pass the Commons on Friday, MPs in support of the bill have claimed ahead of the crunch vote.

Assisted dying bill 'has enough support to pass Commons' next week, MPs supporting change claim
Bar staff will be trained to deal with spiking under a new crackdown on violence against women on nights out, Sir Keir Starmer has announced.

Bar staff to get anti-spiking training as part of Starmer's crackdown on nightlife violence against women
Former England ace Wayne Rooney has broken his silence about wife Coleen appearing on I'm A Celebrity! Get Me Out Of Here.

Wayne Rooney admits he's voting for wife Coleen to do I'm A Celeb trials and 'wants to go into the jungle next'
Members of the Israeli forces inspect a site following a rocket fired from Lebanon hit an area in Rinatya, outskirts of Tel Aviv, Israel, Sunday, Nov. 24, 2024. (AP Photo/Leo Correa)

Hezbollah fires massive '340 missile' barrage in Tel Aviv after Israel killed 29 in Lebanon

More Topics

See more More Topics

War in Ukraine

Cost of Living Crisis

UK Strikes

Immigration

Crime & Police

London

NHS

Royal News