Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
China United Kingdom

UK Blames China for Massive Breach of Voter Data (techcrunch.com) 21

The U.K. government has blamed China for a 2021 cyberattack that compromised the personal information of millions of U.K. voters. From a report: In a statement to lawmakers in Parliament on Monday, U.K. deputy prime minister Oliver Dowden attributed the 2021 data breach at the Electoral Commission to hackers working for the Chinese government. Dowden told lawmakers that the U.K. government "will not hesitate to take swift and robust actions wherever the Chinese government threatens the United Kingdom's interests."

It's the first time the United Kingdom has attributed the breach since the cyberattack was first disclosed in 2023. The Electoral Commission, which maintains copies of the U.K. register of citizens eligible to vote, said at the time hackers took the names and addresses of an estimated 40 million U.K. citizens, including those who were registered to vote between 2014 and 2022 and overseas voters. The data breach began as early as 2021 but wasn't detected until a year later. In a statement Monday, the U.K. National Cyber Security Centre (NCSC) said it is "highly likely" that the Chinese hackers accessed and exfiltrated emails and data from the electoral register during the hack.

This discussion has been archived. No new comments can be posted.

UK Blames China for Massive Breach of Voter Data

Comments Filter:
  • ...I'd imagine most nation states are using microtargeting on social media to drive their own agenda. The UK had a Russian-backed Brexit campaign and isolating countries like the UK suits many other nations too...
  • Errrm! (Score:3, Insightful)

    by XMKT ( 2664229 ) on Monday March 25, 2024 @11:32AM (#64343113)

    Shouldn't the UK blame the UK for allowing somebody to access the data.

    If memory serves, that's what everyone else has to do...

    • by zlives ( 2009072 )

      no, there is no defense against hacking by china or russia or whatever outsiders.
      this is why the government needs back doors so they can safely extract, err i mean protect everyone.

    • 1. The UK government failed to protect confidential personal data.

      2. Naturally, its apologists blame China. Why not? Everyone is supposed to hate China - almost as much as they are supposed to hate Russia, Iran, Venezuela, Syria... and nothing the Chinese say will be believed. In any case they will not stoop to deny such absurd allegations.

      Bottom line: the UK government failed to protect confidential personal data. All the talk in the world about "hackers" cannot change the fact that a competently administe

      • "a competently administered and protected IT system cannot be penetrated"

        Insert peals of laughter here.

        No safe is uncrackable, no lock unbreakable.

  • For criminally bad IT security. No, that is not victim-blaming. These people are _perpetrators_.

    • by XXongo ( 3986865 )

      For criminally bad IT security. No, that is not victim-blaming. These people are _perpetrators_.

      Both. The UK was a victim, and also was to blame for bad security.

  • I don't understand why the voter details were held centrally at all. Voter registration in the UK is with a council official called a Returning Officer, and the data only need ot be stored locally. If not held centrally it would have been much harder for it to get hacked.
  • by Budenny ( 888916 ) on Monday March 25, 2024 @02:14PM (#64343709)

    All they seem to have got is the UK Open Register, which is available to anyone who wants to buy it. You can opt out of this.

    There is also the Full Register, which is not available to buy, and can only be used for electoral purposes. For instance a candidate wishes to do a mail shot. You cannot opt out of this.

    But you can register to vote anonymously, if for safety reasons (for instance) your name should not appear on either register. In this case it will not.

    They seem only to have got the Open Register, so its not clear why this is very serious. Maybe the intention revealed in the hacking is an indicator of something bad? Or maybe they got something more than the Open Register, but short of the Full Register?

    https://www.gov.uk/electoral-r... [www.gov.uk]

Garbage In -- Gospel Out.

Working...