Hackers accessed sensitive agency data through a vulnerability in the Ivanti Endpoint Manager Mobile software. Many government organisations use this tool to manage and secure mobile devices, apps, and internal information. Consequently, the National Cyber Security Centre (NCSC) is now investigating the leak. Meanwhile, experts remain in close contact with all affected organisations to manage the impact of the breach.
Security risks and wider impact
The breach specifically compromised the personal data of Custodial Institutions Agency (DJI) employees. This stolen information includes names, telephone numbers, and location data. Because DJI staff include prison guards, officials now fear that criminals could use these details to threaten or blackmail them.
In response, State Secretaries Eric van der Burg and Claudia van Bruggen took immediate action. However, the crisis extends beyond the prison service. The Data Protection Authority, the Council for the Judiciary, and the Medicines Evaluation Board also suffered breaches. Furthermore, the list of victims now includes the Repatriation and Departure Service and a local municipality.
@ anp | NEWS BRAINPORT
