A recent cyber attack on councils across Greater Manchester has left thousands of residents vulnerable to a phishing scam. The attack initially targeted one borough last week. Still, it quickly spread over the weekend, affecting the housing websites for Manchester, Salford, and Bolton councils. The breach occurred through the software company Locata, which provides housing software to councils nationwide.
The Phishing Scam Unfolds
The cyber attack led to thousands of users receiving phishing emails asking them to “activate your tenancy options” and provide personal data. This scam has put residents at significant risk of identity theft and financial loss. Locata, the company responsible for the compromised software, quickly issued an apology and stated that they were working with third-party IT experts to manage the issue. The firm has informed the affected local authorities and continues to investigate the breach.
Local Authorities Respond
Local councils were swift to acknowledge the attack and the subsequent phishing scam. A Manchester City Council spokesperson confirmed that the cyber attack impacted only the public-facing section of its website, Manchester Move, resulting in a breach of “limited personal data.” Similarly, Bolton and Salford councils were affected. Bolton’s council advised residents who received phishing emails to follow the UK National Cyber Security Centre’s guidance if they clicked on any links or shared personal information.
Salford Council, one of the first targets of the attack, urged residents to monitor their bank accounts for suspicious activity and to contact their bank immediately if they suspect fraud. The council also recommended that residents change their passwords if they use the same credentials across multiple accounts and consider signing up for a free credit report.
The Dangers of Stolen Data
The potential for stolen data to be sold on the dark web is one of the most alarming aspects of this breach. Fraudsters can sell personal information, such as names, addresses, dates of birth, and banking details, for as little as £5 on dark web marketplaces. Once purchased, criminals can use this data to commit various crimes, including identity theft and unauthorised financial transactions.
The sale of personal data on the dark web poses severe risks to individuals. Fraudsters can use this information to open credit accounts, take out loans, or even access existing bank accounts. Victims often do not realise they have been targeted until the damage is done, making it crucial to act quickly if you suspect your data has been compromised.
Steps for Fraud Prevention
Given the growing threat of phishing and data breaches, becoming familiar with the latest scams is more critical than ever. Residents should be aware of the dangers posed and the steps they can take to protect themselves:
- Verify Email Sources: Always double-check the source of any email asking for personal information. Official organisations will never ask for sensitive information via email.
- Monitor Financial Accounts: Regularly review your bank statements for suspicious transactions. If you notice any irregularities, immediate action is crucial.
- Change Passwords Regularly: Use strong, unique passwords for each of your accounts and change them regularly to minimise the risk of fraud.
- Stay Informed: Educate yourself and others about the latest phishing scams and how to avoid them. Awareness is your first line of defence.
Thousands Exposed
The cyber attack on Greater Manchester councils has exposed thousands of residents to potential fraud through a sophisticated phishing scam. The involvement of a reputable software provider like Locata highlights the increasing sophistication of fraudsters. With the stolen data likely already for sale on the dark web, it is crucial for residents to be vigilant in monitoring their financial accounts and taking proactive steps to protect themselves.
Fraud prevention and awareness are essential in this digital age, where cyber threats are becoming increasingly common. By staying informed and taking the necessary precautions, individuals can reduce their risk of falling victim to phishing scams and other types of fraud. Locata and local authorities’ ongoing investigation will hopefully bring more clarity to the extent of the breach. Still, in the meantime, residents must remain on high alert.
