Some 3,700 Afghans, British troops and civil servants may have fallen victim to a new data breach, after an incident involving a company linked to the Ministry of Defence.
Stansted-based Inflite The Jet Centre Ltd suffered a data security incident which led to “unauthorised access to a limited number of company emails”, according to the firm.
The company provides ground handling for flights operated under a contract involving the MoD and the Cabinet Office.
About 3,700 individuals are thought to be potentially affected by the incident, including Afghans who were brought the UK.
It was revealed in July that some Afghans who fought alongside British forces had their data leaked when defence official released the details of 18,714 individuals “in error” in February 2022.
Troops travelling to routine military exercises and journalists accompanying ministers on official engagements are also among the potential victims.
“We were recently notified that a third party sub-contractor to a supplier experienced a cyber security incident involving unauthorised access to a small number of its emails that contained basic personal information,” a Government spokesperson said.
“We take data security extremely seriously and are going above and beyond our legal duties in informing all potentially affected individuals. The incident has not posed any threat to individuals’ safety, nor compromised any Government systems.”
A statement published on Inflite The Jet Centre’s website said: “We believe the scope of the incident was limited to email accounts only, however, as a precautionary measure, we have contacted our key stakeholders whose data may have been affected during the period of January to March 2024.”
The data is not thought to have been shared publicly or released on the dark web.
In one email, seen by the PA news agency, the Cabinet Office told a passenger that there was “a risk” their visa details and information about their job had been leaked.
Their passport details may also have been compromised. The notification read: “HM Passport Office advises that you do not need to cancel or replace your passport, as security measures are in place to prevent misuse without the physical document.”
The victim may be affected by the leak “because certain information is required by ground-handling companies to enable flights to depart and to arrive”.
In a separate notification reported in The Independent and The Times, the Government’s Afghan resettlement team said that Afghan Relocations and Assistance Policy (Arap) reference numbers may also have been leaked.
Follow STV News on WhatsApp
Scan the QR code on your mobile device for all the latest news from around the country
