Accounting and payroll firm Sage has revealed that it has suffered a data breach, which has exposed the details of about 200 of its UK clients.
“We believe there has been some unauthorised access using an internal login to the data of a small number of our UK customers so we are working closely with the authorities to investigate the situation,” the firm said in a statement.
Following a number of reports that the breach was caused by the ‘misuse of an employee login’, it’s possible a Sage staff member may be involved if not directly responsible
According to The Guardian, the accounting firm has around six million small and medium-sized businesses making use of its payroll software, and operates in 23 countries around the world – including South Africa.
The data breach seems to be isolated to the UK only, as the company said that South African companies shouldn’t be at any risk.
The Guardian also revealed that the Information Commissioner’s Office, who is in charge of enforcing the UK’s Data Protection Act, has been notified about the breach, and the incident has been reported to the police.
In its statement, the company stressed that it is looking into the matter.
“Our customers are always our first priority so we are communicating directly with those who may be affected and giving guidance on measures they can take to protect their security. We are investigating unauthorised access to customer information using an internal login,” it said.
“We cannot comment further whilst we work with the authorities to investigate but our customers remain our first priority and we are speaking directly with those affected.”[Image – CC by 2.0/wistechcolleges]