Update: The Independent is reporting that there’s been a £1 million ransom demand attached to this incident. Five days later, the council’s database is still down, it seems.
Alexander J. Martin reports:
A 0-day security breach at Lincolnshire County Council has exposed locals’ medical records, addresses, and bank details, claimed an anonymous tipster, though the council denies any data was stolen.
The breach was reported by The Lincolnite, which stated “anonymous reports from inside the council” suggested a major breach of its “main adult care system” had spaffed the sensitive personal information of constituents.
Talking to The Register this morning, a council spokesperson denied that any data had been lost and claimed an email attachment with a zero-day exploit had managed to infect its internal system after being sent to multiple members of staff.
Read more on The Register.