Unauthorised access to IOPscience server

5 Jan 2017
IOPscience logo


It has come to our attention that unauthorised access was gained by an unknown party to an IOPscience.iop.org server on 24 December 2016. This server contained a database that included account holders’ contact details and user password for IOPscience.

We can confirm that no payment or other financial information was present on this server.

IOP Publishing places a high priority on data security and is taking this matter very seriously. We have already taken steps towards the prevention of any recurrence. We have engaged forensic IT specialists to investigate the incident, and there was no evidence of access being gained to account holders’ personal information or any intent to gain such access.

We therefore consider it unlikely that any personal information has been accessed, but as we cannot rule this out we wanted to bring this to account holders’ attention as soon as possible.

Even though we consider it unlikely that password details have been compromised, we have recommended account holders take this opportunity to change their current password for MyIOPscience, and also change the password for any other sites or accounts that use that same password.

We are sorry for any problems or inconvienience this may cause our users.

Passwords can be reset by going to the following link:

https://ticket.iop.org/passwd

Institute of Physics members: Members are unable to change their passwords on the website due to a technical issue. Accordingly, and as a precaution, we are changing the IOPscience passwords for all IOP members. Members will receive an email in the next few working days with their new password.

If you do not know your password, you can use the forgotten password tool available at:

https://ticket.iop.org/lostpasswd

If you have any questions, please contact us at customerservices@iop.org