If you are a BBC employee, your data might have been exposed. Register your interest to stay informed and receive updates if this claim is taken forward by one of our partner law firms.
Join the Claim isn’t a law firm. We connect you with regulated UK firms that run group action claims. If one of our partner firms takes this case forward, we’ll share more details, including how to check your eligibility.
Register your interest
Overview
In June 2023, a cyber-attack affected businesses around the world.
Hackers targeted Zellis, a payroll provider used by the BBC through IBM, by exploiting a flaw in a widely used file transfer tool called MOVEit. As a result, personal PAYE details belonging to BBC staff and contractors were exposed.
The compromised data included employee:
We are monitoring the situation closely. Register your interest and we’ll keep you updated if one of our regulated UK partner law firms is able to take this claim forward.
BBC data breach claim – At a glance
Status
Stay Informed
Take a moment to answer a few simple questions so we can understand your connection and keep you updated.
Share your details so we can keep you informed if any updates become available.
If a partner law firm takes this claim forward, we’ll let you know the next steps and how to join.
In June 2023, the BBC told staff that a cyber-attack had hit Zellis — a payroll support provider used by the BBC through IBM. The attack exploited a vulnerability in a popular file transfer tool called MOVEit. As a result, sensitive personal data of staff paid via PAYE was accessed by hackers.
The data exposed includes:
BBC ID number
Title, first and last name
Date of birth
National Insurance number
Home address (line 1)
BBC email address
Start and end date of BBC employment or engagement
The breach affects current and former BBC employees, as well as individuals engaged by the BBC on a PAYE basis. If you’ve received a notification from the BBC about this incident, you may be eligible to claim compensation.
Experts believe the Russian ransomware group ‘Clop’ was responsible. They’ve claimed to have stolen data from hundreds of organisations through MOVEit.
A group action claim allows people affected by the same issue to take action together. This strength in numbers helps stand up to big organisations. Join the Claim helps connect people with law firms so these actions have a real impact.
June 2023
The BBC is notified by Zellis that its systems have been breached due to the MOVEit vulnerability. IBM, which was working with Zellis to deliver payroll services to the BBC, is also involved. The BBC begins contacting affected employees and individuals engaged on a PAYE basis to inform them that their personal data may have been accessed.
Cybersecurity experts link the attack to the Russian ransomware group Clop (also known as C10p), which had exploited the MOVEit vulnerability across multiple global organisations.
May 2023
A vulnerability in MOVEit Transfer - a widely used file transfer software by Progress Software - is exploited by hackers. This software was being used by Zellis, a payroll provider to several organisations, including the BBC.
We’ll provide more updates on the BBC employee data breach as they occur.
If you are a BBC employee, your data might have been exposed.
Register to stay updated and we’ll let you know if a partner law firm takes this claim forward.
We connect consumers with their legal dream teams to ensure they get the compensation and support they deserve.
Join the Claim is not a law firm. We connect individuals with top law firms for group action claims, and our service is free to use. While we may receive a fee from the law firms we introduce you to, this will not affect your costs or compensation. We are not responsible for the advice or services provided by these firms. Please note, nothing on this website is legal advice, and while we check claim eligibility, we cannot guarantee a law firm will accept a case.
Join the Claim is a registered trading name of Big on Media ltd. Big on Media is registered in the United Kingdom under licence number 09878028 with its registered office located at Big on Media, 32 Eyre Street, Sheffield, England, S1 4QZ
© Join the Claim All Rights Reserved |
