The Ministry of Justice has confirmed a major cyberattack on Legal Aid, resulting in the theft of sensitive data, including details of domestic abuse victims and legal case participants.
The breach, which occurred in April, affected the agency’s online digital systems. Initially believed to be limited, the extent of the compromise has now been described as “more extensive than originally understood.”
According to media reports, over two million pieces of information dating back to 2007 may have been accessed and downloaded by the attackers.
What data has been breached?
The types of data exposed include:
- Names and contact details
- Addresses of legal aid applicants
- Dates of birth and national identification numbers
- Criminal history
- Employment and financial information, including debts and payments
Legal Aid Agency Chief Executive Jane Harbottle has issued a public apology, acknowledging that the breach may be “shocking and upsetting” for those affected.
Warning to be vigilant
The Ministry of Justice is urging the public to be vigilant for suspicious communications, including unexpected phone calls, emails, or messages, and is advising individuals to update any passwords that may have been exposed.
Further updates are expected as the investigation continues.
What you can do now
If you have been affected by the Legal Aid data breach, you might be entitled to compensation.
Use our quick checker to find out if you’re potentially eligible for a Legal Aid data breach claim.
