Bank account details of Cambridge Water customers have been published to the dark web, following a cyber attack.
Customers have been left alarmed and furious after learning that names and current addresses, sort codes and account numbers are among the data stolen by cyber criminals from its parent company, South Staffordshire plc, back in August.
Cambridge Water has offered support services to affected customers
Cambridge Water has written to customers to warn them that “criminals may try to use this compromised data to carry out fraud, in particular by submitting fraudulent Direct Debit mandates to your bank or building society using the data compromised in the cyber-attack”.
Andy Willicott, managing director of Cambridge Water, said in a statement: “We understand that customers trust us to keep their data safe and I’d personally like to say sorry to all those customers impacted – we’ll be doing what we can to support you through this.”
The company has set up a helpline for customers, from 8am to 6pm on weekdays and offered customers access to free credit monitoring for a year.
The customers affected are understood to be some of those who pay by Direct Debit.
Cambridge Water has told customers that its parent company took “immediate steps to manage and respond” to the cyber attack once it had been identified.
That, however, was too late to prevent the data breach.
Cambridge Water’s water supplies were not impacted by the attack
Customers have been told that South Staffordshire plc “engaged leading IT forensic experts to investigate the issue and also notified the National Cyber Criminal Security Centre, the National Crime Agency, the Information Commissioner’s Office (ICO), Ofwat and the Consumer Council for ..
Support the originator by clicking the read the rest link below.