BBC Details

    Organization Logo

    BBC

    London, England20000 employees • Media

    Industry

    Media

    Security Incidents

    1

    The British Broadcasting Corporation (BBC) is a public service broadcaster based in the United Kingdom, known for producing a wide range of television, radio, and online content. Established in 1922, it is the world's oldest national broadcaster and operates under a royal charter that mandates impartiality and a commitment to high-quality programming. The BBC provides news, entertainment, and educational content to a global audience, funded primarily by a television license fee paid by UK households.

    Security Incidents

    BBC Breach of May 2024
    Severity Score
    Moderate

    Type

    Data Breach

    Summary

    The recent BBC data breach has significantly impacted its pension database, resulting in the theft of personal records of over 25,000 individuals. The breach was part of a larger supply chain attack that exploited vulnerabilities in the MOVEit document-transfer application, managed by the BBC's payroll provider, Zellis. The stolen data includes sensitive information such as staff ID numbers, dates of birth, home addresses, and national insurance numbers, posing a substantial risk for identity theft. This incident follows similar breaches affecting other Zellis clients, such as British Airways ...
    Show more

    Severity

    The BBC data breach was highly severe, exposing sensitive personal information of over 25,000 individuals, including staff ID numbers, dates of birth, and national insurance numbers. This breach resulted from a vulnerability in the MOVEit file transfer tool used by the BBC's payroll provider, Zellis, which was also implicated in breaches affecting other major companies like British Airways. The compromised data poses a significant risk for identity theft and has prompted an urgent investigation and response by the BBC to mitigate further damage

    Impact

    The BBC data breach affected over 25,000 individuals, including current and former employees whose personal details were stored in the pension database. Sensitive information such as staff ID numbers, dates of birth, home addresses, and national insurance numbers were compromised. The breach has raised significant concerns about identity theft and financial fraud for the affected individuals​

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos