Southern Water confirmed this morning that criminals broke into its IT systems, making off with a "limited amount of data."
The Black Basta ransomware group claimed the attack while publishing a snippet of the data it allegedly stole, which included:
The company said in a statement that if it finds evidence of customer or employee data being stolen, it will notify the affected individuals.
"We had previously detected suspicious activity, and had launched an investigation, led by independent cyber security specialists.
The water and wastewater industry has become an increasingly popular target for cybercriminals over the past year, prompting the US Cybersecurity and Infrastructure Security Agency (CISA) to prioritize engagement with it to the same degree as the healthcare and education sectors.
"To support and reinforce EPA's ongoing efforts, CISA is prioritizing the water sector in its engagements and efforts due to the significant level of cyber and physical risk associated with this sector combined with its relative lack of resources to address those risks," reads the agency's dedicated page for the water industry.
The original article contains 467 words, the summary contains 174 words. Saved 63%. I'm a bot and I'm open source!