UK Home Office confirms investigation of incident affecting visas and immigration database
Learn More
The UK Home Office has confirmed an ongoing investigation into a cybersecurity incident affecting their visas and immigration database system used for healthcare worker sponsorship. The breach was first revealed when a threat actor posted claims on a hacking forum about stolen data from the system.
The hacker initially suggested that approximately 171,000 individuals were affected. However, this number was later dramatically revised down to approximately 200 affected individuals.
Exposed data allegedly includes:
- Passport details
- Work permits
- UK visas
- Bank statements
- Additional personal information of healthcare workers
The incident affects foreign healthcare workers who are critical to the UK's NHS and social care services. The threat actor appears to be financially motivated and is attempting to sell the stolen information on hacking forums.
Caroline Waterfield, director of development and employment at NHS Employers, has expressed serious concern about the breach, emphasizing the need for prompt investigation and confirmation of the extent of the compromise.
The Home Office has provided limited details due to the ongoing police investigation. The dramatic revision in the number of affected individuals (from 171,000 to 200) suggests initial reports may have been inaccurate or the full scope of the breach is still being determined.
