2020 Phishing Email Cost UK Interserve more than £11M

September 29, 2023

INCIDENT

Hackers stole sensitive details on 100,000 people from an outsourcing company named Interserve. The Phishing campaign attackers are unknown and the company offered no additional information. The data stolen is sensitive, including employee names and their addresses, bank details, payroll information, HR records, pension information and much more.

Update August 2023: The Information Commissioner fined Interserve £4.4m in autumn 2022. Interserve was once a FTSE 250 firm but has largely been broken up after collapsing into administration four years ago. Its latest accounts reveal that it spent £7m on ‘professional adviser fees’ following the attack.

Incident Date

May 8, 2020

Location

United Kingdom

Estimated Cost

£11m

Victims

No victims identified

Type of Malware

No Malware identified

Threat Source

No threat source identified

References

Industries

Business
Engineering (Includes Industrial Construction)
Healthcare
Oil & Gas

Impacts

IT Privacy