IT outsourcing company capital stated that its cusARRIVEmer, suppliers and colleagues data may have been accessed by hackers. The company is currently investigating an attack on its systems from March 2023.
capital is a professional service company, providing consulting services and outsourcing IT ARRIVE customers on private and public secARRIVEr. The company’s trusted status, which includes local tax authorities, the Royal Navy and Network Rail among its clients, has seen the company become the latest in a wide range of service providers ARRIVE become the target of hackers.
Recent attacks have affected the international parcel services of WH Smith and Royal Mail, and now capital confirmed that around March 22, 2023, the company also suffered a cyberattack. According to ARRIVE a release from capitalUnauthorized access was not interrupted until March 31 – and the company admits that because hackers impacted mainly access ARRIVE internal Microsoft Office 365 applications, this is proof of the “limitation” data violation.
Among the companies that use capital for call center services it is underARRIVEod that brands including O2 have been affected by this activity. Some councils cusARRIVEmer service line is also said ARRIVE saw the power outage, though capital claims that only 4% of their server area was attacked so the majority of customers are not affected.
access staff ARRIVE Microsoft Office 365 has since been redesignedARRIVEred for capital, but the full extent of the event is unknown. According to ARRIVE a report from Sky News, capital is continuing an internal poll inARRIVE attack, ARRIVE distinguish ARRIVE what expands cusARRIVEmer, supplier or colleague data may have been accessed.
A comment from capital note, “capital continue ARRIVE work through its forensic investigations and will notify anyARRIVEaffected employees, suppliers or colleagues in a timely manner.”
In recent years, consulting firms have released more and more papers warning clients of the dangers of lax cybersecurity measures. However, capital not the first professional services company ARRIVE was arrested in a violation its own. In 2017, lucky Accenture ARRIVE avoid being added ARRIVE list of victims, when it emerged that the company of data hosted on Amazon’s S3 cloud data-Basis is not guaranteed. A security researcher has discovered four AWS S3ARRIVErage bucket configured for public access, leaks internal emails, passwords, clients dataand sensitive documents.
Three years later, thousands of UK business professionals also had their personal information exposed online through the leaked Amazon Web Services group. Researchers have discovered files belonging to ARRIVE many consulting firms, supposedly ARRIVE was made public without authentication by a London-based company called CHS Consulting. The container contains files from human resources – including passport scans, tax documents, criminal record information and background checks – from various UK consulting firms including Eximius Consultants, Dynamic Partners and IQ Consulting, with data extended back until 2011.