Which major education organization was affected by the Intradev breach?

Affinity Learning Partnership, a major UK education trust that operates seven schools and employs more than 650 staff members, was one of the most significantly affected organizations. The trust's schools educate approximately 3,000 children and young people aged 3 to 19.

What type of personal information was exposed in the Intradev breach?

The exposed data includes names and surnames, addresses (home and email), dates of birth, National Insurance numbers, passport numbers and details, driving license numbers and details, QTS (Qualified Teacher Status) numbers, phone numbers, places of birth, gender information, and IP addresses.

What authorities are investigating the Intradev breach?

Intradev has reported the incident to relevant authorities, including the Information Commissioner's Office (ICO) and Action Fraud. The ICO has confirmed that it is investigating the matter after Intradev self-reported the incident.

How many people were affected by the Intradev data breach?

The exact number of affected individuals has not been disclosed, but the breach affected thousands of UK education sector employees through the cascading impact on organizations that use APCS and OnlineSCR services.

What is QTS and why is it significant in this breach?

QTS stands for Qualified Teacher Status, which is a professional qualification for teachers in England and Wales. QTS numbers were among the exposed data, making this breach particularly concerning for education professionals as it involves their professional certification information.

Incident

Cyberattack on UK software developer causes data breach affecting thousands of education staff

Q: What are APCS and OnlineSCR?

APCS serves over 19,000 organizations across healthcare, finance, and child safeguarding sectors, providing Disclosure and Barring Service (DBS) checks for employers. OnlineSCR specializes in recruitment and DBS checks specifically for UK schools, making it a repository for highly sensitive staff information including background check details.

published: Sept. 5, 2025

Learn More

A cyberattack on Hull-based software development company Intradev Limited has triggered a cascading data breach affecting thousands of UK education sector employees.

Intradev Limited detected unauthorized malicious activity within its systems on August 4, 2024. The company has reported the incident to relevant authorities, including the Information Commissioner's Office (ICO) and Action Fraud, and continues to cooperate with ongoing investigations.

The incident exposed sensitive personal information of education professionals through Intradev's client relationships with Access Personal Checking Services (APCS) and Single Central Record Ltd (OnlineSCR), both critical service providers for the education sector.

APCS, which serves over 19,000 organizations across healthcare, finance, and child safeguarding sectors, provides Disclosure and Barring Service (DBS) checks for employers. OnlineSCR specializes in recruitment and DBS checks specifically for UK schools, making it a repository for highly sensitive staff information including background check details.

One of the most significantly affected organizations is Affinity Learning Partnership, a major UK education trust that operates seven schools and employs more than 650 staff members. The trust's schools educate approximately 3,000 children and young people aged 3 to 19.

Exposed data includes:

Names and surnames
Addresses (home and email)
Dates of birth
National Insurance numbers
Passport numbers and details
Driving license numbers and details
QTS (Qualified Teacher Status) numbers
Phone numbers
Places of birth
Gender information
IP addresses

The nature of the attack and the number of affected individuals has not been disclosed.

The ICO has confirmed that it is investigating the matter after Intradev self-reported the incident. Affected organizations had to file separate reports with regulatory authorities and implement immediate protective measures for their staff and service users.

Cyberattack on UK software developer causes data breach affecting thousands of education staff

Read More
Numosity EV charging software firm breached, initially claimed …
Finalsite hit by ransomware, shuts down 5,000 school …
HackerOne reports data breach through third-party Salesforce Drift …
Mullvad VPN claims that leaked accounts are not …
Hackers claim breach of Resecurity, the company reports …