Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
The Electoral Commission

The Electoral Commission Vendor Cyber Rating & Cyber Score

electoralcommission.org.uk

We are the independent body which oversees elections and regulates political finance in the UK. We work to promote public confidence in the democratic process and ensure its integrity. We enable the delivery of free and fair elections and referendums. This includes focussing on the needs of voters and addressing the changing environment to ensure every vote remains secure and accessible. We regulate political finance – taking proactive steps to increase transparency, ensure compliance and pursue breaches. We use our expertise to make and advocate for changes to our democracy, aiming to improve fairness, transparency and efficiency. We have UK wide responsibilities and are accountable to the UK Parliament, the Scottish Parliament and


EC A.I CyberSecurity Scoring

EC
Company Information
Website:http://www.electoralcommission.org.uk
Employees number:590
Number of followers:8,559
NAICS:921
Industry Type:Public Policy Offices
Homepage:electoralcommission.org.uk
EC Risk Score (AI oriented)
Between 700 and 749
logo
ECPublic Policy Offices
Updated:
03/04/2026
711/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
EC Global Score (TPRM)
xxxx
logo
ECPublic Policy Offices
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

EC
ECModerate
Current Score
711Ba (MODERATE)
01000
2 incidents
-36 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
714Before Incident
JUNE 2026
714Before Incident
MAY 2026
712Before Incident
APRIL 2026
712Before Incident
MARCH 2026
710Before Incident
FEBRUARY 2026
709Before Incident
JANUARY 2026
708Before Incident
DECEMBER 2025
706Before Incident
NOVEMBER 2025
705Before Incident
OCTOBER 2025
703Before Incident
SEPTEMBER 2025
737Before Incident
Cyber Attack
10 Sep 2025EC
UK Electoral Commission

Cyberattack on the UK's Electoral Commission

701After Incident
HIGH-36
THE5292352091025
The UK’s Electoral Commission suffered a prolonged cyberattack that went undetected for an extended period, with hackers infiltrating its IT networks for at least three years. While no evidence of election tampering was found during six by-elections held during the breach, the intrusion exposed millions of British voters to potential risks. The Commission faced a formal reprimand from the Information Commissioner’s Office (ICO) due to security lapses, highlighting vulnerabilities in democratic systems. Recovery took three years and required a £250,000 grant, with additional long-term investments in cybersecurity. Despite the recovery, the organization remains uncertain about what data was exfiltrated or the attackers’ objectives. The incident underscored the growing threat to electoral systems globally, forcing the Commission to adopt stricter security measures to prevent future breaches and protect democratic integrity.
INCIDENT DETAILS -
TYPE
cyber intrusionunauthorized access
MOTIVATION
potential disruption of democracyundermining government processesunknown specific goals
IMPACT
Financial Loss: £250,000 (recovery grant) + increased cybersecurity budgetunknown (potential exposure of voter data)no evidence of tampering in by-electionsIT networksDowntime: 3 years (recovery period)long-term recovery effortreputation damageregulatory reprimandformal reprimand by Information Commissioner's Office (ICO)loss of public trust in electoral securityregulatory reprimandpotential risk to millions of voters
DATA BREACH
potentially voter dataunknown specificsNumber Of Records Exposed: millions (potential)high (voter information)unknown if data was exfiltratedpotential PII of voters
AUGUST 2025
737Before Incident
JUNE 2014
747Before Incident
Data Leak
16 Jun 2014EC
The Electoral Commission

Cyber Attack on UK Voter Data

624After Incident
CRITICAL-123
THE71710823
A cyber attack that revealed the data of tens of millions of UK voters is thought to have been orchestrated by Russia, prompting concerns that it was an attempt to undermine democracy. The Electoral Commission acknowledged that hackers had gained access to files containing the names and addresses of the 40 million persons registered to vote between 2014 and 2022 in reference to copies of electoral registers. They expressed regret to individuals impacted and assured the public that "significant" steps had been taken to strengthen the security of the systems used by the watchdog.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Undermine democracy
IMPACT
Data Compromised: Names and addresses of 40 million persons registered to vote between 2014 and 2022
DATA BREACH
Type Of Data Compromised: Personal InformationNumber Of Records Exposed: 40 millionSensitivity Of Data: HighPersonally Identifiable Information: Names and addresses

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for EC ?
?
What was EC's A.I Rankiteo Cyber Score in June 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in May 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in April 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in March 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in February 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in January 2026 ?
?
What was EC's A.I Rankiteo Cyber Score in December 2025 ?
?
What was EC's A.I Rankiteo Cyber Score in November 2025 ?
?
What was EC's A.I Rankiteo Cyber Score in October 2025 ?
?
What was EC's A.I Rankiteo Cyber Score in September 2025 ?
?
What was EC's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on EC's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with EC ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view EC's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?