Southern Water has confirmed that a segment of its server estate was compromised in a cyber attack, leading to the theft of data.
This announcement comes as part of the company’s ongoing investigation into suspicious activities detected in its IT systems, initially brought to light on 23rd January 2024.
The utility provider expressed its regret over the incident, stating,
“We are very sorry that this has happened.”
Investigation and response
Southern Water is currently working alongside expert technical advisers to work out the scope of the data breach. Initial assessments indicate that the personal information of some customers and both current and former employees may be at risk.
In response to the breach, the company has enlisted the expertise of leading independent cybersecurity experts. These experts are tasked with monitoring the dark web for any signs of the stolen data being circulated. Since the company’s name appeared on a cyber criminals’ site on 22nd January 2024, no evidence has yet emerged of the compromised data being publicly disclosed.
Proactive measures and customer notification
Emphasising the importance of data protection and information security, Southern Water is in the process of contacting individuals whose personal data may have been compromised.
The company’s forensic investigations suggest that between five to ten percent of its customer base will be notified about the breach, alongside all current employees and some former employees.
Affected individuals will receive advice on security measures, recommended precautionary actions, and information about the support available to them.
Collaboration and security enhancements
Southern Water has been actively collaborating with government bodies, regulatory authorities, and the National Cyber Security Centre throughout this ordeal. The incident has been reported to both the police and the Information Commissioner’s Office.
The company’s IT security teams, along with independent incident response experts, have bolstered monitoring and protection mechanisms to guard against any further suspicious activity.
Southern Water assures its customers that the breach has not impacted its operations or the services provided.
Ongoing updates and support
Southern Water has committed to keeping the public informed with updates via its website and social media channels. The company vows to directly notify individuals if there is any indication that their data may be affected, in accordance with regulatory requirements.
For those with concerns related to the cyber incident, Southern Water has provided a dedicated contact number: 0330 303 0025.
