Weymouth and Kingston Maurward College in Dorset is investigating a recent phishing attack that compromised several email accounts. The breach occurred on Friday, 15 August, during the summer holidays.
Spam emails were sent from affected accounts, though the college confirmed that personal data exposure was minimal.
The compromised accounts may have contained contact information from anyone who previously communicated with the college. Early detection allowed the college to lock down affected accounts promptly, limiting the impact.
A full investigation is ongoing, with additional security measures now in place to prevent similar incidents. The matter has been reported to the Information Commissioner's Office (ICO).
Phishing attacks involve criminals impersonating trusted entities to trick individuals into revealing sensitive information such as passwords or personal data. The college reassured students, staff, and partners that swift action and robust systems limited the disruption.
The colleges, which merged just over a year ago, recently received a 'Good' rating across all areas in an Ofsted inspection, reflecting strong governance and oversight amid the cybersecurity incident.
