Cyber Incident Victim: Essex Police
Date:
Oct 2015
Location:
United Kingdom
Summary
A police force's Twitter account was compromised by hackers who posted a rogue tweet containing a link directing followers to an offensive image, potentially exposing thousands of users. The unauthorized post remained visible for over 40 minutes before removal, prompting an internal security review and immediate protective measures. While initial assessments indicated no malware on the linked site, affected individuals were advised to conduct security scans on their devices. The organization publicly apologized, acknowledged the breach as a significant security failure, and initiated an investigation to determine the cause of the compromise.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 23, 2015, Essex Police experienced a security breach when unauthorized individuals gained control of their official Twitter account. The hackers posted a rogue tweet containing a link that directed followers to an offensive image. This unauthorized message remained visible on the account for at least 40 minutes before the force detected the compromise and deleted the tweet. At the time of the incident, the account had 108,924 followers, exposing a substantial audience to the malicious content. Essex Police promptly issued a public apology acknowledging the breach and warning followers about the link’s nature. They advised users who clicked the link to perform security scans on their devices as a precautionary measure, though their initial assessment indicated the hosting site did not contain malware.
The force immediately initiated an investigation to determine how the account’s security was compromised and implemented measures to prevent recurrence. A screenshot of the offending tweet circulated online after an anonymous user preserved it before deletion. Essex Police characterized the event as a “valuable lesson” in cybersecurity preparedness, prompting an internal review of their online security protocols. The incident occurred amid heightened public concern over cyber threats, coinciding with TalkTalk’s unrelated data breach affecting millions of customers, though no direct connection between the two events was established. No further details about the attackers’ identity, motives, or technical methods were disclosed in official statements.