The Ministry of Justice has said it is aware of a data breach affecting prison in England and Wales.
Confidential prison layouts had been leaked onto the dark web in the past two weeks, according to The Times.
A former prison governor told the paper organised crime groups could use the information to smuggle drugs or weapons into prisons, or plan escapes.
The MoJ said that it had “taken immediate action to ensure prisons remain secure”.
The Times first reported that prison authorities suspect that the leak may be linked to organised crime groups aiming to use drones to smuggle drug into prisons, while the blueprints could be used to evade security measures.
The leaked blueprints are reported to include the locations of key security features, such as cameras and sensors, making it easier for criminals to bypass security or exploit vulnerabilities.
The Cabinet Office and the Prison Service are said to be working to identify the source of the breach and assess who might stand to benefit from the stolen information.
The National Crime Agency said it was providing support in an advisory capacity, but that it would be “incorrect” to say it was investigating the incident.
A MoJ spokesman said: “We are not going to comment on the specific detail of security matters of this kind, but we are aware of a breach of data to the prison estate and like with all potential breaches have taken immediate action to ensure prisons remain secure.”
The leak was first flagged in an internal alert issued earlier this month, which was seen by the paper.
