90 days from today is Fri, 23 August 2019
21 March 2019
On Saturday 9 March our systems’ security alerted us to a ransomware cyber-attack which affected many of the systems used by us, the Police Federation of England and Wales, at our headquarters in Surrey.
This resulted in us not being able to access data we hold in order to undertake our business.
One of the databases affected held personal data about you as a police officer. The National Membership Database includes the name, ranks and serving force of around 120,000 police officers up to the rank of chief inspector, along with their police email address and National Insurance number.
A second database relates to the booking systems for our conference and hotel facilities in Leatherhead and includes the names, addresses, email addresses and credit card details of guests who have stayed there for leisure purposes. This does not affect those who have stayed there as reps on courses.
A third database relates to our claims case management system. This is a data base for any members who have requested PFEW assistance for any investigation, inquiry or complaint during their service which has been dealt with by HQ at Leatherhead. This may in some cases include the member’s name, address, National Insurance number, bank details and details of the case.
We are deeply sorry that this has happened and that data we hold about you has been affected and know that this will cause you some concern.
We have instructed a leading forensics firm to help us investigate the matter. This is a complex process and will take some time. Early indications are that this was a scattergun attack and that PFEW was not specifically targeted. There is also no evidence at this stage that any data was extracted from PFEW’s systems, although this cannot be discounted at this stage. Whilst we consider at this stage the risk of your data being extracted or misused is low, we wanted to alert members as to the risk at the earliest opportunity.
We take data security very seriously and have a number of technical and organisational measures in place to protect the data of our members and others whose data we hold. On becoming aware of the attack we immediately reacted and put in place a number of measures in order to stop the further spread of the malware. Local Federation branches related to your force have not been affected.
We have been working with the National Crime Agency who are dealing with this incident as a criminal offence, and have been liaising with the National Cyber Security Centre and the Information Commissioner’s Office. We continue to offer every cooperation as investigations continue.
Those concerned about fraud or lost data should contact Action Fraud. Action Fraud’s online fraud reporting tool any time of the day or night, or call 0300 123 2040. For further information visit www.actionfraud.police.uk
Advice can also be obtained from the National Cyber Security Centre<https://www.ncsc.gov.uk/guidance/mitigating-malware.
A helpline will also be live from noon Friday 22 March until 6pm and then operational during weekends from 9am to 3pm and thereafter Monday to Friday 8am to 6pm. It will be staffed by security vetted personnel experienced in dealing with cyber crime. 0800 358 0714 Further information is also available via https://advice.polfed.org/
Inspector Mark Andrews
Wiltshire Police Federation
Direct dial: 101 – 01380 861043
Mobile: 07969 507790