Capita says customer data may have been accessed in cyber incident

CapitaSharecast graphic / Josh White

Capita

13.48p

17:00 07/01/25

-2.46%

-0.34p

Outsourcer Capita said on Thursday that customer, supplier or colleague data may been accessed in a cyber attack that took place last month.

The company announced on 3 April that it had been hit by a cyber incident, which mainly impacted access to internal Microsoft Office 365 applications. Capita said the majority of its client services were not affected by the incident and remained in operation, and that it has now restored virtually all client services that were impacted.

"In parallel with the services restoration activity, Capita has continued to work closely and at speed with specialist advisers and forensic experts in investigating the incident to provide assurance around any potential customer, supplier or colleague data exfiltration," it said.

"From our investigations to date, it appears that the incident arose following initial unauthorised access on or around 22 March and was interrupted by Capita on 31 March. As a result of the interruption, the incident was significantly restricted, potentially affecting around 4% of Capita’s server estate.

"There is currently some evidence of limited data exfiltration from the small proportion of affected server estate which might include customer, supplier or colleague data."

The company said it continues to work through its forensic investigations and will inform any customers, suppliers or colleagues affected "in a timely manner".