Business process services provider Capita plc (LON:CPI) has today provided an update on the cyber incident that occurred in March 2023.

In March 2023, a threat actor gained unauthorized access to some of Capita’s systems, which caused disruption to customer services in some parts of Capita’s business.

Based on the forensic work carried out, Capita confirmed that some data had been compromised during the incident. Consequently, the company took extensive measures immediately after the incident to recover and secure the leaked data. Capita continues to monitor the dark web and can confirm that it has seen no evidence, following recovery activities, that any of the compromised data is circulating there or elsewhere in the online environment.

As a precaution, Capita offered a 12-month subscription to Identity Plus, a monitoring service provided by UK credit reporting service Experian.

The investigation is now complete and all affected customers, suppliers and employees are being contacted and Capita continues to support those whose data was breached.

As a result of the incident, Capita incurred net costs of £25m, which include specialist fees, recovery and remediation costs and investment to strengthen Capita’s cyber security environment.

Capita commented:

“The incident was a challenging experience for the Group and we have taken steps to share our experience and knowledge transparently with our customers, suppliers and other companies and plan to continue this good practice in the future. Since the incident we have continued to see good contract growth momentum with a 17% increase in TCV secured in 2023.”


Leave a Reply

Your email address will not be published. Required fields are marked *