The Information Commissioner’s Office has fined Capita plc and Capita Pension Solutions Ltd a combined £14m following a cyber attack in April 2023 which saw hackers gain access to over 6m people’s data. Stroud News & Journal reports:
Outsourcing giant Capita has been fined £14 million by the Information Commissioner’s Office (ICO) for failing to protect personal data after hackers stole 6.6 million people’s information during a cyber attack in 2023.
The data watchdog said the breach in March 2023 saw the hackers access information including pension details and staff records, as well as details of customers of organisations Capita supports.
In some cases this included sensitive information such as details of criminal records, financial data or so-called special category data, which can include race, religion and sexual orientation.
[…]
The ICO had initially proposed a combined fine of £45 million, but said this was reduced as part of a voluntary settlement and as it took into account actions by Capita following the hack to improve its systems, offer support to those impacted and engage with cyber authorities and regulators.
Read more at Stroud News & Journal.