I wanted to let folks know that we are currently investigating a data breach on the Dev-Freedom-01 Server. We have been made aware of a leak published.
We are still performing a full investigation into the data which has been leaked, but current indications would suggest that it was isolated to the developer server, and was accessed using one of our dev team's credentials.
From the initial review of the data, we've been able to narrow the breach down to being not before March 31st 2021 at 22:19 UTC, and not after April 3rd 2021 at 01:02 UTC.
We are currently investigating if any PPI Data has been included in this leak, and where appropriate will be working with the Information Commissioners Office when we have confirmed if a GDPR breach has occurred.
For clarification, we are notifying everyone about this potential breach as a copy of Freedom-01 was cloned to the dev server some time previous in order to give the dev team a realistic non-prod environment to test against. It is also important to note that the vast majority of this information has previously been made public through historic archiving / publication of the server files.
I will keep people informed via this thread as we establish further information.
There will be a separate thread open to discussion, but I will say that until further information is established the dev team and others involved in the investigation have been asked not to disclose any further information for the time being, especially as this will potentially require some coordination with external organisations if this does prove to contain any personal information.
We have suspended access to the dev server through a network and service suspension to prevent access. This server will remain suspended pending the outcome of the investigation, and once concluded the server will be fully destroyed.
I thank you all for your understanding, and would like to stress that this appears to be isolated to the dev server, and we have no reason to believe that any other servers have been compromised and the account which we believe to have been compromised on the dev server, was not a valid account on any non-dev servers.