Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

ICO fine against South Staffordshire Water for data breach

Regulatory/Legal Action
First reported
Last updated
Happening score
H score 24
2 unique sources, 2 articles

Summary

Hide ▲

The ICO finalized a nearly £1m penalty against South Staffordshire Water and South Staffordshire PLC, resolving a cyber enforcement action tied to a breach that exposed personal information on over 633,000 people. The companies accepted a reduced fine that was 40% lower than the original £1.6m amount in return for not contesting it. The penalty matters because it turns a prolonged personal data breach into a formal regulatory outcome with direct financial consequences.

Related Happenings

South Staffordshire Water Plc customer data exposed after South Staffordshire Water Plc breach

Data Leak
First: 12.05.2026 23:17 Last: 12.05.2026 23:17 Sources 1

How related: “We have fined South Staffordshire Plc and South Staffordshire Water Plc (together South Staffordshire) £963,900 following a serious cyber attack that resulted in the personal information of 633,887 people being extracted and published on the dark web,” reads the ICO’s announcement.

About this happening: South Staffordshire Water Plc's **data leak** exposed the personal information of **663,887** customers and employees, increasing the risk of fraud and account abuse. The exposure...

Open Happening

South Staffordshire Water hit by network compromise

Incident
First: 12.05.2026 11:30 Last: 12.05.2026 11:30 Sources 1

How related: The incident itself began with a successful phishing email on September 11, 2020 which resulted in the installation of the Get2 downloader and the SDBbot remote access Trojan (RAT).

About this happening: **South Staffordshire Water** suffered a **phishing-led network intrusion** that ultimately exposed personal information tied to **over 633,000 people**. The compromise mattered b...

Open Happening

Lloyds Banking Group customer data exposed after Lloyds Banking Group breach

Data Leak
First: 30.03.2026 17:00 Last: 30.03.2026 17:00 Sources 1

About this happening: **Lloyds Banking Group** exposed customer personal data through a **software defect** in a mobile banking update, affecting **up to 447,936 customers** and briefly revealing other...

Open Happening

ICO fine against TMAC for false-identity marketing calls

Regulatory/Legal Action
First: 30.03.2026 12:30 Last: 30.03.2026 12:30 Sources 1

About this happening: The **ICO** fined **TMAC** **£100,000 ($132,000)** for marketing calls made with **false identities**, imposing a regulatory penalty on unlawful direct-marketing conduct that affe...

Open Happening

ICO fines Police Scotland over phone data disclosure

Regulatory/Legal Action
First: 12.03.2026 12:30 Last: 12.03.2026 12:30 Sources 1

About this happening: **The ICO** fined **Police Scotland** **£66,000** and reprimanded the force for a **data protection failure** that exposed a female officer’s phone contents to a colleague she acc...

Open Happening

Timeline

  1. 12.05.2026 11:30 1 articles · 15d ago

    Successful phishing email installs Get2 downloader and SDBbot RAT on South Staffordshire Water systems

    Exploitation Observed

    On September 11, 2020, a successful phishing email hit South Staffordshire Water systems and led to installation of the Get2 downloader and the SDBbot remote access Trojan (RAT).

    Show sources
    Open in new tab
  2. 12.05.2026 11:30 1 articles · 15d ago

    Threat actor begins lateral movement through South Staffordshire Water network

    Campaign Scope Update

    On May 17, 2022, the threat actor began moving laterally through South Staffordshire Water's network using a domain administrator account and remote desktop protocol.

    Show sources
    Open in new tab
  3. 12.05.2026 11:30 1 articles · 15d ago

    IT performance issues trigger investigation into South Staffordshire Water breach

    Detection Ioc Update

    On July 15, 2022, IT performance issues caused by unscheduled database exports prompted an investigation into the South Staffordshire Water intrusion.

    Show sources
    Open in new tab
  4. 12.05.2026 11:30 1 articles · 15d ago

    South Staffordshire Water discovers ransom note after attempted delivery to staff

    Victim Impact Update

    On July 26, 2022, South Staffordshire Water discovered a ransom note that the threat actor had unsuccessfully tried to send to some staff members.

    Show sources
    Open in new tab
  5. 12.05.2026 11:30 2 articles · 15d ago

    ICO finalizes reduced fine against South Staffordshire Water and South Staffordshire PLC

    Legal Policy Action Update

    On 2026-05-12, the Information Commissioner's Office finalized a reduced fine against South Staffordshire Water and South Staffordshire PLC after the breach compromised personal information on over 633,000 current and former customers and employees; the companies agreed not to contest a penalty nearly £1m, 40% below the original £1.6m sum.

    Show sources
    Open in new tab