Menu
Browse

Digital ID

Primary URL Location Industry
digitalid[.]co[.]uk
Country United Kingdom
Manufacturing Icon
Manufacturing
Profile

Digital ID, operating under that alias and headquartered in the United Kingdom, functions as a third‑party supplier of identity cards for UK police forces and a range of other organisations. The company’s core activity involves producing and distributing credential documents that contain personal identifiers such as the holder’s name, rank, photograph and a unique serial number, as evidenced by the data exposed in a recent security incident. By serving law‑enforcement clients, Digital ID occupies a specialised niche within the identity‑management sector, providing physical credentials that are integral to operational and administrative functions across multiple public‑sector bodies.

On 1 July 2023 Digital ID was the target of a ransomware attack that compromised the personal data of police officers, including their names, ranks, photographs and serial numbers. The breach, reported by The Guardian on 14 September 2023, affected not only the organisation itself but also the police forces and other entities that rely on its identity‑card services. The exposure of such sensitive information prompted significant security concerns for the affected personnel, who faced heightened risks of misuse of their personal details. In response to the incident, a nationally led criminal investigation was launched to ascertain the attack’s origins, assess the extent of the damage and determine any regulatory or legal repercussions.

The ransomware episode underscores the broader cybersecurity challenges faced by suppliers that handle sensitive governmental data, highlighting how a breach at a single vendor can reverberate across multiple client organisations. It also serves as a reminder of the importance of robust protective measures for identity‑management providers, particularly those supporting critical services such as policing. While the investigation remains ongoing, the incident has already prompted renewed scrutiny of data‑protection practices and supply‑chain security within the UK public‑sector landscape.

Incidents
Linked incidents available to members
1 incident