Southern Water has confirmed that personal and financial data belonging to 5-10% of its customers across Kent, Sussex, Hampshire, and the Isle of Wight has been exfiltrated in a cyberattack first reported last month. In an email to customers, Southern Water apologised for the breach and informed them that personal data, including their names, dates of birth, national insurance numbers, bank account details and reference numbers, could have been stolen for sale on the dark web. The company said it had been monitoring suspicious activity in its IT systems since last month when it was named on a cybercrime website. Southern Water has engaged leading independent cybersecurity experts to investigate the matter and is notifying all affected customers and employees. The Information Commissioner's Office (ICO) has been notified and is investigating the incident. The ICO has advised concerned individuals to contact them.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.
