Details can be found on the USS website.
The nature of the information accessed by the cyber-attackers included dates of birth and national insurance numbers of current and former USS members. It is therefore a significant breach of their systems and USS has informed the Information Commissioner’s Office.
USS are in the process of writing to members with further details including an offer of free access to an identity management service provided by Experian. If you have not received an email from USS please ensure that you check it isn’t in your junk folder.
USS has offered the following advice:
We would encourage members to only ever give out personal information if they are absolutely sure they know who they are communicating with.
-
If you receive a suspicious email, you should forward it to report@phishing.gov.uk. For text messages and telephone calls, forward the information to 7726 (free of charge). For items via post, contact the business concerned.
-
If there are any changes to your National Insurance information, HM Revenue & Customs would contact you – but you can also phone them on 0300 200 3500.
-
If you are concerned someone might be impersonating USS, please let us know by emailing mydata@uss.co.uk.
The National Cyber Security Centre and the Information Commissioner’s Office (ICO) both provide guidance that may also be useful.
Whilst the breach did not involve Loughborough University systems in any way, we are clearly monitoring the situation given the number of colleagues and former colleagues who are likely to have been affected. USS can be contacted at mydata@uss.co.uk.