Capita reveals evidence of data breach in cyber attack

The outsourcer has restored staff access to Microsoft Office 365 after the attack and ‘virtually all’ the impacted client services.

Holly Williams
Thursday 20 April 2023 02:49 EDT
Capita is a major contractor for local authorities (Alamy/PA)
Capita is a major contractor for local authorities (Alamy/PA)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Outsourcing firm and government contractor Capita said customer, supplier or colleague data may have been accessed by hackers in a recent cyber attack on the firm.

The group – a major contractor for local authorities – said investigations since the hack was discovered on March 31 have shown evidence of a “limited” data breach.

Capita continues to work through its forensic investigations and will inform any customers, suppliers or colleagues that are impacted in a timely manner

Capita

It said this “might include customer, supplier or colleague data”.

“Capita continues to work through its forensic investigations and will inform any customers, suppliers or colleagues that are impacted in a timely manner,” it said.

Capita said it has restored staff access to Microsoft Office 365 after the attack, which was announced on April 3.

It marks the latest in a recent spate of cyber attacks, with high street retailer WH Smith suffering its second hack in less than a year last month and Royal Mail’s international postal service suffering lengthy disruption after hackers targeted the group.

When announcing the attack earlier this month, Capita said there had been “disruption” to some services provided to clients, by primarily affecting “access to internal Microsoft Office 365 applications”.

Companies that use Capita for call centre services, such as O2, were affected, it is understood.

Capita has continued to work closely and at speed with specialist advisers and forensic experts in investigating the incident

Capita

Local authorities, such as Barnet Council in London, also said the IT issue impacted some customer service lines.

Capita insisted the majority of its client services were unaffected and remained in operation and that it has now “restored virtually all client services that were impacted”.

It said: “In parallel with the services restoration activity, Capita has continued to work closely and at speed with specialist advisers and forensic experts in investigating the incident to provide assurance around any potential customer, supplier or colleague data exfiltration.”

The group said its investigations so far suggest hackers first breached its systems on or around March 22, which it discovered and interrupted on March 31.

About 4% of its server estate was affected, it said.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in