Southern Water Data Breach Affects Up to 500,000 Customers

Russian-linked hackers stole sensitive customer and employee data in a January cyberattack, prompting a major security response.

Up to 500,000 Southern Water customers and numerous employees may have had their personal data stolen in a cyberattack linked to the Russian hacking group Black Basta.
The breach, discovered in January, involved sensitive information such as bank details and National Insurance numbers.
Southern Water has engaged cybersecurity experts to monitor the dark web for leaked data and offered fraud monitoring services to affected customers.
The company has reported the incident to the Information Commissioner’s Office and is working with the National Cyber Security Centre.
Southern Water has not confirmed whether it complied with any ransom demands, but its name was removed from Black Basta's website, a move often seen after ransom payments.