It is understood the data stolen in the cyber-attack is visible on the dark web raising concerns about identity theft

UK water supply company, South Staffordshire PLC, fell victim to a large-scale cyber-attack in October. The company has since confirmed that employee and customer personal data, including bank details, have been compromised.

It is understood the data stolen in the cyber-attack on South Staffordshire Water is visible on the dark web, posing a significant threat to any individuals affected.

In a statement, the parent company said: ”South Staffordshire PLC has recently experienced a criminal cyber-attack involving unauthorised third-party access to our systems.

”As soon as we became aware of the attack, we took immediate steps to respond to and manage the incident and engaged leading forensic experts to investigate the issue.

“We are working closely with the relevant government and regulatory authorities and will keep them updated as our investigations continue.”

There are now fears the victims may be at risk of identity fraud. According to Richard Forrest, legal director at Hayes Connor, The information that we have received regarding the South Staffordshire Water data breach is very concerning.

”When a company of such large scale experiences a data breach, it means a significant amount of personal data is likely at serious risk of being misused.

“When financial data is in jeopardy, individuals can fall victim to identity or takeover fraud. Criminals can then use this information to extract funds from the victim’s bank account, as well as buy products and services, leading to both financial loss and emotional distress.”