Cancer Research UK targeted by Russian hackers
Cancer Research UK has been targeted by Russian hackers, according to reports appearing in national newspapers this weekend.
RiskIQ, a cybersecurity consultancy, said the group “tried to steal the card details of people in the UK who had brought items through the cancer charity’s online gift shop”.
According to the Daily Telegraph: “Cancer Research UK runs an online shop where customers can buy items including skin treatment lotions and bandanas for chemotherapy patients.
“The hackers planted malicious code into Cancer Research UK’s website, which was designed to siphon off the credit card information of people who made purchases through the site.”
A spokeswoman for the charity confirmed that CRUK shops had been hacked in June 2016, but said no credit card information had been stolen.
She also provided a statement from Nigel Armitt, chief financial officer at CRUK, which said: “We advised customers who might have been affected to contact their bank as a preventative measure, so they could be advised if any additional action needed to be taken.
“The online store services were immediately disabled to ensure the exposure was limited and a subsequent investigation conducted by a third-party firm confirmed that there were no supporters impacted by the event.
“The investigation of this incident and its containment was our highest priority.
“Our life-saving work is only possible thanks to public support. We take online data protection and cyber security extremely seriously.
“We reported the incident to the Information Commissioner’s Office, who were fully apprised of the situation and took no further action.”
CRUK was one of a number of UK-based companies and organisations targeted by the same group, which included British Airways and Ticketmaster.
The ICO has been contacted for a comment.
Source civilsociety
Industry: Cyber Security News
Latest Jobs
-
- Senior Presales Consultant | Managed Security Services | London
- London
- N/A
-
Senior Presales Consultant – Managed Security Services Location: London-commutable (Hybrid) A well-established cyber consultancy is seeking a Senior Presales Consultant to drive growth across its managed security services / advisory portfolio. This hybrid role bridges commercial and technical expertise supporting solution design, shaping customer proposals, and guiding conversations from scoping through to delivery. Key experience: Background in managed security services, including SOC operations and threat detection Strong knowledge of cloud and on-prem security tooling (SIEM, EDR, IAM) Penetration testing Proven ability to translate technical concepts into clear business value Confident in customer-facing engagements and pre-sales delivery Experience contributing to bids, proposals, and RFI/RFP responses To find out more contact me on 07884666351 Visa sponsorship is unfortunately not available for this role.
-
- Senior SOC Engineer - Microsoft | Splunk. Permanent. London
- London
- N/A
-
Senior SOC Engineer – Hybrid London Type: Full-Time A well-established cyber security provider is seeking a Senior SOC Engineer to strengthen its managed services function. This role is ideal for someone with a strong operational background in SIEM and EDR tools who can confidently lead customer onboarding, fine-tune detection strategies, and act as a senior point of contact for technical escalations. You will need to be SC clearable. Bonus points if you have SC clearance currently. You will be responsible for ensuring smooth integration of new clients into the service, optimising alerting capabilities and delivering meaningful outcomes during investigations. This is a hands-on position, working closely with internal teams and external stakeholders to maintain robust security operations across multiple environments. Prior experience in a cyber-focused MSP or MSSP Strong hands-on capability with platforms such as Microsoft Sentinel, Defender for Endpoint, or similar Proficiency in scripting and query languages such as KQL or PowerShell Knowledge of detection logic, investigation workflows, and cloud-based infrastructure Confident communicator with strong documentation and reporting skills Apply today for more information.