What is Hesley Group and what services do they provide?

Hesley Group is a Doncaster-based care organization that provides services for vulnerable individuals with complex needs. The organization works with vulnerable populations, which makes the data breach particularly concerning given the sensitive nature of their work.

What types of staff information were exposed in the Hesley Group breach?

The exposed data includes staff names and home addresses, employee photographs and identification images, personal phone numbers and contact information, email addresses, bank account details and financial information, salary information, medical information and health-related data, employee onboarding documentation, equal opportunities monitoring information, DBS background check records, and internal administrative documents.

Why was there a significant delay in reporting the Hesley Group breach?

The delay in reporting is not explained by Hesley Group. The cybersecurity incident occurred in September 2024 but was not reported until August 2025, representing an 11-month delay that has not been justified by the organization.

How many staff members were affected by the Hesley Group data breach?

The number of affected individuals has not been disclosed by Hesley Group. The organization has not provided specific figures on how many current and former staff members had their personal information compromised.

Has Hesley Group disclosed how the cyberattack occurred?

No, the nature of the attack has not been disclosed. Hesley Group has not provided details about how the attackers gained access to their systems or what methods were used in the breach.

What financial information was compromised in the Hesley Group breach?

The compromised financial information includes bank account details and financial information, as well as salary information and compensation records. This financial data exposure could potentially lead to identity theft or financial fraud affecting current and former staff members.

What should affected Hesley Group staff members do to protect themselves?

Affected staff members should take advantage of the identity monitoring services provided by Hesley Group, monitor their bank accounts and financial statements closely for suspicious activity, be vigilant for identity theft attempts, and utilize the one-to-one support services offered by the organization for assistance with any concerns related to the breach.

Incident

Doncaster care provider Hesley Group reports cyberattack exposing staff data and financial info

Q: How does Hesley Group describe the scope of the data breach?

The organization claims that criminals only accessed 'some folders on our system and extracted a small amount of data,' but the scope of potentially compromised information indicates a significant breach of staff privacy and data security, contradicting their characterization of it as a small incident.

Q: Why is the exposure of DBS check information particularly concerning?

The inclusion of DBS (Disclosure and Barring Service) check information is very concerning as these background screening documents contain sensitive personal history data used to assess individuals' suitability for working with vulnerable populations. This type of information could be particularly damaging if misused.

published: Aug. 7, 2025

Learn More

Hesley Group, a Doncaster-based care organization providing services for vulnerable individuals with complex needs, is reporting a cybersecurity incident that occurred in September 2024 and compromised sensitive personal information belonging to current and former staff members.

The data breach, was reported in August 2025. The organization claimms that criminals only accessed "some folders on our system and extracted a small amount of data," but the scope of potentially compromised information indicates a significant breach of staff privacy and data security.

Exposed data includes:

Staff names and home addresses
Employee photographs and identification images
Personal phone numbers and contact information
Email addresses and digital communication details
Bank account details and financial information
Salary information and compensation records
Medical information and health-related data
Employee onboarding documentation and forms
Equal opportunities monitoring information
DBS (Disclosure and Barring Service) background check records
Internal administrative documents and personnel files

The nature of the attack and the number of affected individuals is not disclosed. The inclusion of DBS check information is very concerning as these background screening documents contain sensitive personal history data used to assess individuals' suitability for working with vulnerable populations.

The delay in reporting is not explained. The organization has completed its investigation and begun the process of notifying affected individuals whose data was potentially accessed during the breach.

The company has reported the incident to authorities including the Information Commissioner's Office (ICO), the National Cyber Security Centre (NCSC), and other relevant stakeholders including the Care Quality Commission (CQC).

As a precautionary measure, Hesley Group is providing affected staff members with subscriptions to identity monitoring services to help detect potential misuse of their personal information. The organization has also established one-to-one support services for people they care for, their families, and colleagues, including those not directly affected by the data breach.

Doncaster care provider Hesley Group reports cyberattack exposing staff data and financial info

Read More
Pacific Cataract and Laser Institute reports cyberattack by …
Liberty Hospital reports cyberattack, possible data breach
DocGo healthcare provider reports data breach
UW Health reports data breach caused by hacking …
Wirral University Teaching Hospital NHS Trust reports cyberattack, …