Security breach of the Science & Technology Facilities Council (STFC) Event Booking System

Padlock

[28 November 2016]

On 10 November an organisation external to the University, the Science & Technology Facilities Council (STFC), were informed of a cyber-attack on the event booking service (https://eventbooking.stfc.ac.uk/) which resulted in a data breach. 

The user registration database was compromised, containing personal information. Those affected have been notified by email by STFC. The information contained within it could be used to access other internet hosted system or in targeted phishing attacks.

The STFC have already changed the password associated with accounts on this service.   To regain access, users are advised to use the “I’ve forgotten my password” option within the Login area.

Further advice?

  • Please ensure that you do not use your University password for other services.
  • If the password used for this service is also used for other cloud services e.g shopping or banking, we recommend that you change those passwords as soon as possible.
  • Please be extra vigilant for Phishing attacks that may utilise the data found within the database to attempt to extract further personal information from you.
  • If you wish to have your data removed from this service, please inform the STFC Information Management Team (STFCInformationManagement@stfc.ac.uk)