Personal data exfiltrated from international business process outsourcing and professional services company Capita has been made available by the hacking group Black Basta. Capita has not yet confirmed the data leak but is still investigating. The security incident first came to light at the end of March. Reports claim Black Basta has made a small sample available. The data includes phone numbers, home addresses, bank account information and job application details. Capita said it is in contact with the Information Commissioner's Office.
UPDATE: 200423 - The Guardian reports that, for the first time, Capita has admitted hackers accessed potential customer, staff and supplier data. Even though the cyberattack was restricted to only 4% of its IT systems, data was breached during the incident. The company said: “There is currently some evidence of limited data exfiltration from the small proportion of affected server estate which might include customer, supplier or colleague data.”
UPDATE: 210423 - In a statement, the Information Commissioner's Office confirmed that it had received notification of the Capita data breach and was assessing the situation.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 5,750 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.