--- title: ICO fines Cl0p victim South Staffs Water over data breach sha256: f6c431ed2b31a5db2236bd11e2085f88db66961665a7705a3e5bb7655be5c1b0 type: source source: newsletter source_url: https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach url: https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach review_value: 7 review_confidence: 8 review_recommendation: neutral ingested: 2026-05-16 review_stars: 3 created: 2026-05-15 updated: 2026-05-15 --- # ICO fines Cl0p victim South Staffs Water over data breach Published Time: 2026-05-11T11:45Z Markdown Content: # ICO fines Cl0p victim South Staffs Water over data breach | Computer Weekly [![Image 10](https://cdn.ttgtmedia.com/rms/ux/responsive/img/cw_logo_mobile.png)](https://www.computerweekly.com/)[![Image 11: ComputerWeekly](https://cdn.ttgtmedia.com/rms/ux/responsive/img/cw_logo.png)![Image 12: ComputerWeekly](https://cdn.ttgtmedia.com/rms/ux/responsive/img/cw_logo.png)](https://www.computerweekly.com/)[![Image 13: TechTarget](https://cdn.ttgtmedia.com/rms/ux/responsive/img/cw_tt_logo.png)](https://www.techtarget.com/)Search the TechTarget Network [Join CW+](https://www.computerweekly.com/login?fromURL=https%3A%2F%2Fwww.computerweekly.com%2Fnews%2F366642957%2FICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach) [Login](https://www.computerweekly.com/login?fromURL=https%3A%2F%2Fwww.computerweekly.com%2Fnews%2F366642957%2FICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach)[Register](https://www.computerweekly.com/register?fromURL=https%3A%2F%2Fwww.computerweekly.com%2Fnews%2F366642957%2FICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach)[Cookies](https://www.informatechtarget.com/privacy-policy) [Informa TechTarget](https://www.informatechtarget.com/)[Explore the Network](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [MicroscopeUK](https://www.computerweekly.com/microscope/) * [TechTarget](https://www.techtarget.com/searchcio/) * [Dark Reading](https://www.darkreading.com/) * [CIO Dive](https://www.ciodive.com/) [An Informa TechTarget Publication](https://www.informatechtarget.com/)[Explore our brands](https://www.informatechtarget.com/our-brands) * [News](https://www.computerweekly.com/news) * [In Depth](https://www.computerweekly.com/indepth) * [Blogs](https://www.computerweekly.com/blogs) * [Opinion](https://www.computerweekly.com/opinions) * [Videos](https://www.computerweekly.com/videos) * [Podcasts](https://www.computerweekly.com/podcasts) * [Premium Content](https://www.computerweekly.com/eproducts) * [Webinars](https://www.computerweekly.com/webinars) * [Post Office Scandal](https://www.computerweekly.com/feature/Post-Office-Horizon-scandal-explained-everything-you-need-to-know) [RSS](https://www.computerweekly.com/rss) * IT Management * [IT leadership & CW500](https://www.computerweekly.com/resources/CW500-and-IT-leadership-skills) * [IT architecture](https://www.computerweekly.com/resources/IT-architecture) * [IT efficiency](https://www.computerweekly.com/resources/IT-efficiency-and-sustainability) * [Governance](https://www.computerweekly.com/resources/IT-governance) * [Innovation](https://www.computerweekly.com/resources/IT-innovation-research-and-development) * [Legislation & regulation](https://www.computerweekly.com/resources/IT-legislation-and-regulation) * [Operations & support](https://www.computerweekly.com/resources/IT-operations-management-and-IT-support) * [Project management](https://www.computerweekly.com/resources/IT-project-management) * [Strategy](https://www.computerweekly.com/resources/IT-strategy) * [Supplier management](https://www.computerweekly.com/resources/IT-supplier-relationship-management) * [Business issues](https://www.computerweekly.com/resources/Managing-IT-and-business-issues) * [Sponsored Communities](https://www.computerweekly.com/sponsored_communities) * Industry Sectors * [Healthcare IT](https://www.computerweekly.com/resources/Healthcare-and-NHS-IT) * [Charity IT](https://www.computerweekly.com/resources/IT-for-charity-organisations) * [Business services IT](https://www.computerweekly.com/resources/IT-for-consulting-and-business-services) * [Financial services IT](https://www.computerweekly.com/resources/IT-for-financial-services) * [Government & public sector IT](https://www.computerweekly.com/resources/IT-for-government-and-public-sector) * [Leisure & hospitality IT](https://www.computerweekly.com/resources/IT-for-leisure-and-hospitality-industry) * [Manufacturing IT](https://www.computerweekly.com/resources/IT-for-manufacturing) * [Media & entertainment IT](https://www.computerweekly.com/resources/IT-for-media-and-entertainment-industry) * [Retail IT](https://www.computerweekly.com/resources/IT-for-retail-and-logistics) * [SME IT](https://www.computerweekly.com/resources/IT-for-small-and-medium-sized-enterprises-SME) * [Telecoms & internet](https://www.computerweekly.com/resources/IT-for-telecoms-and-internet-organisations) * [Transport & travel IT](https://www.computerweekly.com/resources/IT-for-transport-and-travel-industry) * [Utilities IT](https://www.computerweekly.com/resources/IT-for-utilities-and-energy) * [IT suppliers](https://www.computerweekly.com/resources/IT-suppliers) * Technology Topics [Datacentre](https://www.computerweekly.com/resources/Data-Centre)View All * [Clustering for high availability and HPC](https://www.computerweekly.com/resources/Clustering-for-high-availability-and-HPC) * [Containers](https://www.computerweekly.com/resources/Containers) * [Converged infrastructure](https://www.computerweekly.com/resources/Converged-infrastructure) * [Datacentre backup power and power distribution](https://www.computerweekly.com/resources/Data-centre-backup-power-and-power-distribution) * [Datacentre capacity planning](https://www.computerweekly.com/resources/Data-centre-capacity-planning) * [Datacentre cooling infrastructure](https://www.computerweekly.com/resources/Data-centre-cooling-infrastructure) * [Disaster recovery/security](https://www.computerweekly.com/resources/Data-centre-disaster-recovery-and-security) * [Green IT](https://www.computerweekly.com/resources/Data-centre-energy-efficiency-and-green-IT) * [Performance, monitoring and optimisation](https://www.computerweekly.com/resources/Data-centre-performance-troubleshooting-monitoring-and-optimisation) * [Systems management](https://www.computerweekly.com/resources/Data-centre-systems-management) * [DevOps](https://www.computerweekly.com/resources/DevOps) * [IaaS](https://www.computerweekly.com/resources/Infrastructure-as-a-Service-IaaS) * [Server and Operating Systems](https://www.computerweekly.com/resources/Managing-servers-and-operating-systems) * [PaaS](https://www.computerweekly.com/resources/Platform-as-a-Service-PaaS) * [Virtualisation](https://www.computerweekly.com/resources/Server-virtualisation-platforms-and-management) * [SaaS](https://www.computerweekly.com/resources/Software-as-a-Service-SaaS) * [Desktop virtualisation platforms](https://www.computerweekly.com/resources/Virtualisation-management-strategy) [Enterprise software](https://www.computerweekly.com/resources/Enterprise-software)View All * [AI and automation](https://www.computerweekly.com/resources/Artificial-intelligence-automation-and-robotics) * [Blockchain](https://www.computerweekly.com/resources/Blockchain) * [Business applications](https://www.computerweekly.com/resources/Business-applications) * [Business intelligence](https://www.computerweekly.com/resources/Business-intelligence-software) * [Cloud applications](https://www.computerweekly.com/resources/Cloud-applications) * [Collaboration](https://www.computerweekly.com/resources/Collaboration-software-and-productivity-software) * [CRM](https://www.computerweekly.com/resources/Customer-relationship-management-CRM) * [Database](https://www.computerweekly.com/resources/Database-software) * [ERP](https://www.computerweekly.com/resources/Enterprise-resource-planning-ERP-software) * [Financial applications](https://www.computerweekly.com/resources/Financial-applications) * [HR software](https://www.computerweekly.com/resources/HR-software) * [Middleware](https://www.computerweekly.com/resources/Integration-software-and-middleware) * [Microservices](https://www.computerweekly.com/resources/Microservices) * [Windows](https://www.computerweekly.com/resources/Microsoft-Windows-software) * [Mobile](https://www.computerweekly.com/resources/Mobile-software) * [Open source](https://www.computerweekly.com/resources/Open-source-software) * [Operating systems](https://www.computerweekly.com/resources/Operating-systems-software) * [SOA](https://www.computerweekly.com/resources/Service-oriented-architecture-SOA) * [Software development](https://www.computerweekly.com/resources/Software-development-tools) * [Software licensing](https://www.computerweekly.com/resources/Software-licensing) * [Virtualisation](https://www.computerweekly.com/resources/Virtualisation-software) * [Web software](https://www.computerweekly.com/resources/Web-software) [IT in Europe and Middle East](https://www.computerweekly.com/resources/Europe-and-Middle-East-information-technology-IT)View All * [IT in France](https://www.computerweekly.com/resources/France) * [IT in the Nordics](https://www.computerweekly.com/resources/Nordics) * [IT in Benelux](https://www.computerweekly.com/resources/Information-technology-IT-in-Benelux) * [IT in Germany](https://www.computerweekly.com/resources/Germany) * [IT in Italy](https://www.computerweekly.com/resources/Italy) * [IT in Poland](https://www.computerweekly.com/resources/Poland) * [IT in Russia](https://www.computerweekly.com/resources/Russia) * [IT in Spain](https://www.computerweekly.com/resources/Spain-information-technology) * [IT in the Middle East](https://www.computerweekly.com/resources/Middle-East) * [IT in Turkey](https://www.computerweekly.com/resources/Turkey) [Information Management](https://www.computerweekly.com/resources/Information-management)View All * [Big data](https://www.computerweekly.com/resources/Big-data-analytics) * [Business intelligence and analytics](https://www.computerweekly.com/resources/Business-intelligence-and-analytics) * [BPM](https://www.computerweekly.com/resources/Business-process-management-BPM) * [Content management](https://www.computerweekly.com/resources/Content-management) * [Database management](https://www.computerweekly.com/resources/Database-management) * [Quality/governance](https://www.computerweekly.com/resources/Data-quality-management-and-governance) * [Data warehousing](https://www.computerweekly.com/resources/Data-warehousing) * [MDM/Integration](https://www.computerweekly.com/resources/Master-data-management-MDM-and-integration) [IT in Asia-Pacific](https://www.computerweekly.com/resources/Asia-Pacific-IT)View All * [IT in ASEAN](https://www.computerweekly.com/resources/ASEAN) * [IT in Australia & New Zealand](https://www.computerweekly.com/resources/Australia-New-Zealand) * [IT in India](https://www.computerweekly.com/resources/India) [Internet](https://www.computerweekly.com/resources/Internet-technology)View All * [Cloud](https://www.computerweekly.com/resources/Cloud-computing-software) * [E-commerce](https://www.computerweekly.com/resources/E-commerce-technology) * [Internet infrastructure](https://www.computerweekly.com/resources/Internet-infrastructure) * [Social media](https://www.computerweekly.com/resources/Social-media-technology) * [Web development](https://www.computerweekly.com/resources/Web-development) [IT skills](https://www.computerweekly.com/resources/IT-careers-and-IT-skills)View All * [Diversity in IT](https://www.computerweekly.com/resources/Diversity-in-IT) * [Training](https://www.computerweekly.com/resources/IT-education-and-training) * [Jobs](https://www.computerweekly.com/resources/IT-jobs-and-recruitment) * [Management skills](https://www.computerweekly.com/resources/IT-management-skills) * [Technical skills](https://www.computerweekly.com/resources/IT-technical-skills) [Hardware](https://www.computerweekly.com/resources/IT-hardware)View All * [Chips & processors](https://www.computerweekly.com/resources/Chips-and-processor-hardware) * [Printers](https://www.computerweekly.com/resources/Computer-peripherals-and-printers) * [Storage](https://www.computerweekly.com/resources/Computer-storage-hardware) * [Data centre](https://www.computerweekly.com/resources/Data-centre-hardware) * [Mobile](https://www.computerweekly.com/resources/Mobile-hardware) * [Networking](https://www.computerweekly.com/resources/Networking-hardware) * [PC](https://www.computerweekly.com/resources/PC-hardware) * [Servers](https://www.computerweekly.com/resources/Server-hardware) [IT security](https://www.computerweekly.com/resources/IT-security)View All * [Antivirus](https://www.computerweekly.com/resources/Antivirus-firewall-and-IDS-products) * [Secure Coding and Application Programming](https://www.computerweekly.com/resources/Application-security-and-coding-requirements) * [Continuity](https://www.computerweekly.com/resources/Business-continuity-planning) * [Cloud security](https://www.computerweekly.com/resources/Cloud-security) * [Data Breach Incident Management and Recovery](https://www.computerweekly.com/resources/Data-breach-incident-management-and-recovery) * [Endpoint and NAC Protection](https://www.computerweekly.com/resources/Endpoint-security) * [Cybercrime](https://www.computerweekly.com/resources/Hackers-and-cybercrime-prevention) * [IAM](https://www.computerweekly.com/resources/Identity-and-access-management-products) * [Risk management](https://www.computerweekly.com/resources/IT-risk-management) * [Network Security Management](https://www.computerweekly.com/resources/Network-security-management) * [Data protection](https://www.computerweekly.com/resources/Privacy-and-data-protection) * [Compliance Regulation and Standard Requirements](https://www.computerweekly.com/resources/Regulatory-compliance-and-standard-requirements) * [Security policy and user awareness](https://www.computerweekly.com/resources/Security-policy-and-user-awareness) * [Web Application Security](https://www.computerweekly.com/resources/Web-application-security) [IT services](https://www.computerweekly.com/resources/IT-services-and-outsourcing)View All * [Cloud](https://www.computerweekly.com/resources/Cloud-computing-services) * [Consultancy](https://www.computerweekly.com/resources/IT-consultancy) * [Outsourcing](https://www.computerweekly.com/resources/IT-outsourcing) * [Hosting](https://www.computerweekly.com/resources/Managed-services-and-hosting-services) * [Offshore](https://www.computerweekly.com/resources/Offshore-IT-services) * [Startups](https://www.computerweekly.com/resources/Technology-startups) [Mobile](https://www.computerweekly.com/resources/Mobile-technology)View All * [Laptop](https://www.computerweekly.com/resources/Laptops-and-notebooks) * [Mobile software](https://www.computerweekly.com/resources/Mobile-apps-and-software) * [Mobile networking](https://www.computerweekly.com/resources/Mobile-networking) * [Smartphone](https://www.computerweekly.com/resources/Smartphone-technology) * [Tablet](https://www.computerweekly.com/resources/Tablet-computers) [Networking](https://www.computerweekly.com/resources/Networking-and-communication)View All * [Datacentre networking](https://www.computerweekly.com/resources/Data-centre-networking) * [Internet of Things](https://www.computerweekly.com/resources/Internet-of-Things-IoT) * [Mobile](https://www.computerweekly.com/resources/Mobile-networks) * [Network hardware](https://www.computerweekly.com/resources/Network-hardware) * [Network monitoring and analysis](https://www.computerweekly.com/resources/Network-monitoring-and-analysis) * [Network routing and switching](https://www.computerweekly.com/resources/Network-routing-and-switching) * [Network security strategy](https://www.computerweekly.com/resources/Network-securitystrategy) * [Network software](https://www.computerweekly.com/resources/Network-software) * [Software-defined networking](https://www.computerweekly.com/resources/Software-defined-networking-SDN) * [Telecoms networks and broadband communications](https://www.computerweekly.com/resources/Broadband-communications) * [Unified communications](https://www.computerweekly.com/resources/Unified-communications) * [VoIP](https://www.computerweekly.com/resources/Voice-networking-and-VoIP) * [WAN performance and optimisation](https://www.computerweekly.com/resources/WAN-performance-and-optimisation) * [Wireless](https://www.computerweekly.com/resources/Wireless-networking) [Storage](https://www.computerweekly.com/resources/Storage)View All * [AI and storage](https://www.computerweekly.com/resources/AI-and-storage) * [Cloud storage](https://www.computerweekly.com/resources/Cloud-storage) * [Containers and storage](https://www.computerweekly.com/resources/Containers-and-storage) * [Data management](https://www.computerweekly.com/resources/Data-management) * [Backup](https://www.computerweekly.com/resources/Data-protection-backup-and-archiving) * [Compliance and storage](https://www.computerweekly.com/resources/Data-protection-regulations-and-compliance) * [Disaster recovery](https://www.computerweekly.com/resources/Disaster-recovery) * [Flash and SSDs](https://www.computerweekly.com/resources/Flash-storage-and-solid-state-drives-SSDs) * [Hyper-convergence](https://www.computerweekly.com/resources/Hyper-converged-infrastructure) * [Object storage](https://www.computerweekly.com/resources/Object-storage) * [Disk systems](https://www.computerweekly.com/resources/SAN-NAS-solid-state-RAID) * [Software-defined storage](https://www.computerweekly.com/resources/Software-defined-storage) * [Storage switches](https://www.computerweekly.com/resources/Storage-fabric-switches-and-networks) * [Storage management](https://www.computerweekly.com/resources/Storage-management-and-strategy) * [Storage performance](https://www.computerweekly.com/resources/Storage-performance) * [Tape storage](https://www.computerweekly.com/resources/Tape-storage) * [Virtualisation and storage](https://www.computerweekly.com/resources/virtualisation-and-storage) Please select a category * Datacentre * Enterprise software * IT in Europe and Middle East * Information Management * IT in Asia-Pacific * Internet * IT skills * Hardware * IT security * IT services * Mobile * Networking * Storage * Follow: * [](https://www.facebook.com/computerweekly) * [](https://x.com/computerweekly) * [](https://www.linkedin.com/company/3089746) [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [ComputerWeekly.com.br](https://www.computerweekly.com/br) * [ComputerWeekly.de](https://www.computerweekly.com/de) * [ComputerWeekly.es](https://www.computerweekly.com/es) * [LeMagIT.fr](https://www.lemagit.fr/) * [MicroScope.co.uk](https://www.computerweekly.com/microscope) * [Home](https://www.computerweekly.com/) * [Data breach incident management and recovery](https://www.computerweekly.com/resources/Data-breach-incident-management-and-recovery) ![Image 14](https://www.computerweekly.com/visuals/ComputerWeekly/Hero%20Images/water-taps-basins-utilities-slonme-adobe_searchsitetablet_520X173.jpg) slonme - stock.adobe.com slonme - stock.adobe.com [News](https://www.computerweekly.com/news) ## The ICO has levied a reduced fine on South Staffordshire Water following cyber improvements in the wake of a Cl0p ransomware attack * Share this item with your network: * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach?vgnextfmt=print) * [](mailto:?subject=ICO%20fines%20Cl0p%20victim%20South%20Staffs%20Water%20over%20data%20breach%20|%20Computer%20Weekly&body=https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach) * * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [](mailto:?subject=ICO%20fines%20Cl0p%20victim%20South%20Staffs%20Water%20over%20data%20breach%20|%20Computer%20Weekly&body=https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach) ![Image 15: Alex Scroxton](https://cdn.ttgtmedia.com/rms/computerweekly/Alex-Scroxton-CW-Contributor-2022.jpg) By * [Alex Scroxton,](https://www.techtarget.com/contributor/Alex-Scroxton)Security Editor Published: 11 May 2026 16:45 Utility operator [South Staffordshire Plc](https://www.south-staffordshire.com/) and its subsidiary [South Staffordshire Water Plc](https://www.south-staffs-water.co.uk/) have been fined a reduced rate of £964,900 by the [Information Commissioner’s Office](https://ico.org.uk/) (ICO), following improvements made after a Cl0p ransomware attack that led to the personal data of over 600,000 people being leaked onto the dark web. The cyber attack itself [came to light in August 2022](https://www.computerweekly.com/news/252523856/South-Staffs-Water-is-victim-of-botched-Clop-attack), and was at first the source of some confusion when the Cl0p gang misidentified its victim and claimed it was attacking and extorting Thames Water. The cyber criminals even published a lengthy rant against Thames Water and accused it of ignoring them, and not caring about its customers. The hapless cyber crooks’ erroneous claims were widely repeated across the UK media at the time. The exposed data included personal details of South Staffordshire customers, such as full names, birthdates and gender information, account information including credentials for online services, financial data including bank account numbers and sort codes, and contact details including email and postal addresses, and phone numbers. A small percentage of customers listed on the [Priority Service Register](https://www.thepsr.co.uk/) had information exposed from which medical information may have been inferred, and a small number of employees were also affected by a leak of human resources data including National Insurance numbers. The ICO said the incident exposed “significant failures” in its approaches to data security, and left both its customers and employees vulnerable for years. “Customers do not have the choice over which water company serves them – they are required to share their personal information and place their trust in that provider,” said Ian Hulme, ICO interim executive director for regulatory supervision. “It is therefore essential that water companies honour that trust by taking their data protection responsibilities seriously.” ## Lying low Although the cyber attack itself took place in 2022, the incident in fact dates back to 2020, when an individual at South Staffordshire fell for a [phishing email](https://www.techtarget.com/searchsecurity/definition/phishing) that enabled the threat actors to install malware on its systems undetected. Though it is unclear whether or not Cl0p first hacked South Staffordshire’s systems itself or obtained the keys through an [initial access broker](https://www.techtarget.com/searchsecurity/tip/What-role-does-an-initial-access-broker-play-in-the-RaaS-model) (IAB), by May of 2022 – 20 months later – the gang started to move laterally through South Staffordshire’s network and was able to compromise domain administrator privileges. However, Cl0p’s presence was not detected until the middle of July, when IT performance issues prompted an internal investigation. On 26 July 2022, South Staffordshire’s IT teams reported a personal data breach to the ICO – then, two days later, discovered a ransom note that Cl0p had tried to distribute to staff members – apparently without success. However, the extent of the data leak did not become apparent for another four months, when South Staffordshire discovered that [over 4.1 terabytes of data had been published](https://www.computerweekly.com/news/252527832/South-Staffs-Water-customer-data-leaked-after-ransomware-attack). In the course of its probe, the ICO said it had found South Staffordshire had not implemented appropriate security controls required of it in UK law. Failings included limited controls that enabled Cl0p to elevate its privileges, inadequate monitoring and logging that failed to detect its activity, the use of obsolete software – including Windows Server 2003, and inadequate vulnerability management, with systems left unpatched, and internal and external security scanning not undertaken. “The steps that South Staffordshire failed to take are established, widely understood and effective controls to protect computer networks,” said Hulme. “The ICO expects all organisations – and particularly those handling large volumes of personal information as part of critical national infrastructure – to have these in place. “Waiting for performance issues or a ransom note to discover a breach is not acceptable,” he added. “Proactive security is a legal requirement, not an optional extra.” ## Cyber improvements The ICO said the total fine of just under a million pounds – which is a 40% reduction on the initial amount proposed – was a voluntary settlement that reflected South Staffordshire’s representations and accounted for various improvements made in the wake of the incident, as well as the proactive support the organisation offered to those affected, and its engagement with regulators and the National Cyber Security Settlement. It added that South Staffordshire had made an early admission of liability, and in accepting its findings, agreed to pay the penalty without further appeal. “We welcome South Staffordshire’s early admission and cooperation in this case,allowing us to reach a voluntary settlement and save resources,” noted Hulme. South Staffordshire has been contacted for comment but had not responded to our inquiries at the time of publication. ### Read more about ransomware * Analysis of a form of ransomware called Vect has uncovered a serious flaw that breaks its core functionality and [turns it from a locker to a wiper.](https://www.computerweekly.com/news/366642421/Vect-ransomware-actually-destructive-wiper-malware) * Ransomware exponents can target identity, bypassing technical defences. Boards should prioritise identity security, align investments, [and embed cyber risk in governance](https://www.computerweekly.com/opinion/Identity-the-new-perimeter-of-ransomware-defence). * Ransomware-as-a-service operations are increasingly seeking to forge connections with employees, contractors and trusted partners of their target organisations as an alternative to straight-up hacking, [says NCC](https://www.computerweekly.com/news/366638772/Ransomware-gangs-focus-on-winning-hearts-and-minds). #### Read more on Data breach incident management and recovery * [![Image 16](https://www.computerweekly.com/visuals/ComputerWeekly/HeroImages/security-cyber-crime-hacker-Montri-adobe_searchsitetablet_520X173.jpg) ##### Top 10 cyber crime stories of 2025 ![Image 17: AlexScroxton](https://www.computerweekly.com/rms/computerweekly/Alex-Scroxton-CW-Contributor-2022.jpg) By: Alex Scroxton](https://www.computerweekly.com/news/366636226/Top-10-cyber-crime-stories-of-2025) * [![Image 18](https://www.computerweekly.com/visuals/ComputerWeekly/Hero%20Images/network-security-padlocks-world-adobe_searchsitetablet_520X173.jpg) ##### Cl0p claims ransomware hit on NHS ![Image 19: AlexScroxton](https://www.computerweekly.com/rms/computerweekly/Alex-Scroxton-CW-Contributor-2022.jpg) By: Alex Scroxton](https://www.computerweekly.com/news/366634578/Cl0p-claims-ransomware-hit-on-NHS) * [![Image 20](https://www.computerweekly.com/visuals/German/article/ransomware-attack-encrypted-files-adobe_searchsitetablet_520X173.jpg) ##### Oracle patches E-Business suite targeted by Cl0p ransomware ![Image 21: AlexScroxton](https://www.computerweekly.com/rms/computerweekly/Alex-Scroxton-CW-Contributor-2022.jpg) By: Alex Scroxton](https://www.computerweekly.com/news/366632397/Oracle-patches-E-Business-suite-targeted-by-Cl0p-ransomware) * [![Image 22](https://www.computerweekly.com/visuals/German/article/data-leak-breach-2-adobe_searchsitetablet_520X173.jpg) ##### More data stolen in 2023 MOVEit attacks comes to light ![Image 23: AlexScroxton](https://www.computerweekly.com/rms/computerweekly/Alex-Scroxton-CW-Contributor-2022.jpg) By: Alex Scroxton](https://www.computerweekly.com/news/366615522/More-data-stolen-in-2023-MOVEit-attacks-comes-to-light) Latest News * [CMA launches investigation into Microsoft business software](https://www.computerweekly.com/news/366642945/CMA-launches-investigation-into-Microsoft-business-software) * [Post Office to contest Capture conviction appeal despite chairman support for overturning en masse](https://www.computerweekly.com/news/366642891/Post-Office-to-contest-Capture-conviction-appeal-despite-chairman-support-for-overturning-en-masse) * [Interview: AI optimism and upskilling for a shifting job market](https://www.computerweekly.com/news/366643006/Interview-AI-optimism-and-upskilling-for-a-shifting-job-market) * [View All News](https://www.computerweekly.com/news) Download Computer Weekly * [![Image 24](https://cdn.ttgtmedia.com/rms/computerweekly/CWE-050526-cover-800px.jpg)](https://www.computerweekly.com/ezine/Computer-Weekly/Mastering-a-marathon-with-the-future-of-healthtech)In The Current Issue: * Digital twin of athlete’s heart to demonstrate future of healthcare * CES 2026: AI gets physical * Interview: Jem Walters, CTO, Vanquis [Download Current Issue](https://www.computerweekly.com/ezine/Computer-Weekly/Mastering-a-marathon-with-the-future-of-healthtech) Latest Blog Posts * [SAP introduces Autonomous Supply Chain Management](https://www.computerweekly.com/blog/CW-Developer-Network/SAP-introduces-Autonomous-Supply-Chain-Management)– CW Developer Network * [SAP Sapphire showcases ‘new SAP’ with agentic AI infrastructure ecosystem & tools](https://www.computerweekly.com/blog/CW-Developer-Network/SAP-Sapphire-showcases-new-SAP-with-agentic-AI-infrastructure-ecosystem-tools)– CW Developer Network * [View All Blogs](https://www.computerweekly.com/blogs) Related Content * [South Staffs Water faces group action over Clop ...](https://www.computerweekly.com/news/366569214/South-Staffs-Water-faces-group-action-over-Clop-ransomware-attack)– ComputerWeekly.com * [Top 10 cyber crime stories of 2025](https://www.computerweekly.com/news/366636226/Top-10-cyber-crime-stories-of-2025)– ComputerWeekly.com * [South Staffs Water customer data leaked after ...](https://www.computerweekly.com/news/252527832/South-Staffs-Water-customer-data-leaked-after-ransomware-attack)– ComputerWeekly.com Latest TechTarget resources * [CIO](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [Security](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [Networking](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [Data Center](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) * [Data Management](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) [Search CIO](https://www.techtarget.com/searchcio/) * [The top CIO challenges: AI hype, security and rapid change](https://www.techtarget.com/searchcio/feature/the-top-cio-challenges-ai-hype-security-and-rapid-change) TechTarget asked CIOs the biggest challenge they expect next year. Their answers point to AI adoption, rapid change and pressure ... * [The AI factory model: What CIOs need to know](https://www.techtarget.com/searchcio/feature/The-AI-factory-model-What-CIOs-need-to-know) The AI experimentation phase is over. Enterprises are now racing to build AI factories that generate revenue, not just consume ... * [The hidden costs of AI: What leaders must budget](https://www.techtarget.com/searchcio/feature/The-hidden-costs-of-AI-What-leaders-must-budget) AI implementation costs extend beyond model fees. Hidden expenses such as data preparation, governance, security and talent ... [Search Security](https://www.techtarget.com/searchsecurity/) * [Transform SIEM rules with behavior-based threat detection](https://www.techtarget.com/searchsecurity/tip/Transform-SIEM-rules-with-behavior-based-threat-detection) Outdated SIEM rules can hamstring enterprises as they try to safeguard their operations. Use a proactive, strategic approach ... * [CISO's guide: How to test an incident response plan](https://www.techtarget.com/searchsecurity/tip/CISOs-guide-How-to-test-an-incident-response-plan) Creating an incident response plan is only the beginning. Regular testing will help ensure it doesn't fall apart during a real ... * [How to implement zero trust for AI](https://www.techtarget.com/searchsecurity/tip/How-to-implement-zero-trust-for-AI) As organizations embed AI into business systems, they also expand the attack surface. Applying zero trust to AI can help mitigate... [Search Networking](https://www.techtarget.com/searchnetworking/) * [10 AI-driven network management tasks](https://www.techtarget.com/searchnetworking/tip/AI-driven-network-management-tasks) AI can automate key network operations tasks, such as anomaly detection, event correlation and ticketing. This shifts network ... * [Network built for champions keeps the Derby on track](https://www.techtarget.com/searchnetworking/feature/Network-built-for-champions-keeps-the-Derby-on-track) The Kentucky Derby is known for speed, and needs a network to keep the tech running as smoothly as the horses. Look behind the ... * [5 clues your network has shadow AI](https://www.techtarget.com/searchnetworking/tip/clues-your-network-has-shadow-AI) Shadow AI, or unauthorized AI tool use, poses risks like data exposure and compliance issues. Improved network visibility and ... [Search Data Center](https://www.techtarget.com/searchdatacenter/) * [Quantum moves from promise to practice at IBM Think 2026](https://www.techtarget.com/searchdatacenter/news/366642895/Quantum-moves-from-promise-to-practice-at-IBM-Think-2026) Quantum computing is becoming a reality at major companies, from Boeing to Allstate. Quantum -- especially when paired with AI --... * [Balancing automation with human oversight in AI data centers](https://www.techtarget.com/searchdatacenter/tip/Balancing-automation-with-human-oversight-in-AI-data-centers) AI enhances data center operations through automation but requires human governance to manage risks, ensure ethical use and ... * [AI capacity planning: Balancing flexibility, performance and risk](https://www.techtarget.com/searchdatacenter/tip/AI-capacity-planning-Balancing-flexibility-performance-and-risk) AI is transforming capacity planning, introducing unpredictable demand patterns. IT leaders must adopt new models to optimize ... [Search Data Management](https://www.techtarget.com/searchdatamanagement/) * [Understanding data contracts for AI projects](https://www.techtarget.com/searchdatamanagement/opinion/Understanding-data-contracts-for-AI-projects) AI models fail silently when upstream data shifts. Data contracts prevent this by making schema, semantics and quality a binding ... * [Power-constrained data architecture curbing AI ambitions](https://www.techtarget.com/searchdatamanagement/feature/Power-constrained-data-architecture-curbing-AI-ambitions) Rising power demands and grid interconnection delays are hampering enterprise AI efforts and altering data strategies, workload ... * [Top 10 vector database use cases across industries](https://www.techtarget.com/searchdatamanagement/tip/Top-industry-use-cases-for-vector-databases) Vector databases have become the standard infrastructure for enterprise AI work. These 10 use cases for vector databases show ... * [About Us](https://www.computerweekly.com/about) * [Editorial Ethics Policy](https://www.computerweekly.com/about/Computer-Weekly-Editorial-Policies-and-Code-of-Conduct) * [Meet The Editors](https://www.computerweekly.com/about/editors) * [Contact Us](https://www.computerweekly.com/about/contact) * [Our Use of Cookies](https://www.informatechtarget.com/privacy-policy) * [Advertisers](https://www.computerweekly.com/about/advertising/) * [Business Partners](https://www.computerweekly.com/about/partners) * [Media Kit](https://media.bitpipe.com/io_10x/io_102267/item_1107555/TTGT-ComputerWeekly_Media-Kit_final.pdf) * [Corporate Site](https://www.informatechtarget.com/) * [Contributors](https://www.computerweekly.com/contributors) * [Reprints](https://licensing.ygsgroup.com/ygspublishersolutions/) * [Answers](https://www.computerweekly.com/answers) * [E-Products](https://www.computerweekly.com/eproducts) * [Events](https://www.computerweekly.com/events) * [In Depth](https://www.computerweekly.com/indepth) * [Guides](https://www.computerweekly.com/guides) * [Opinions](https://www.computerweekly.com/opinions) * [Quizzes](https://www.computerweekly.com/quizzes) * [Photo Stories](https://www.computerweekly.com/photostories) * [Tips](https://www.computerweekly.com/tips) * [Tutorials](https://www.computerweekly.com/tutorials) * [Videos](https://www.computerweekly.com/videos) * [Computer Weekly Topics](https://www.computerweekly.com/resources) [©2026 TechTarget](https://www.informatechtarget.com/terms-of-use), Inc. d/b/a Informa TechTarget. All Rights Reserved. [Privacy Policy](https://www.informatechtarget.com/privacy-policy/) [Cookie Preferences](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) [Cookie Preferences](https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach#) [Do Not Sell or Share My Personal Information](https://techtarget.zendesk.com/hc/en-us/requests/new?ticket_form_id=360004852434) Close ![Image 25](https://go.techtarget.com/clicktrack-r/activity/activity.gif?activityTypeId=16&t=2240163303&t2=2240036641&t3=2240163325&t4=2240036659&t5=2240163331&t6=2240036639&t7=2240036667&t8=2240036660&t9=2240036600&t10=2240036666&a=2026-05-14%2012:18:13&g=366642957&c=normal&auid=99a63a04-a034-4639-8492-8a30484e71c4&r=679318)![Image 26](https://a.usbrowserspeed.com/cs?pid=d177d942cb8207b52f57818feb9bb79a7b77ce6e0ed688e3af36875661b9be1d&r=https%3A%2F%2Fs.dpmsrv.com%2Fblank.png&puid=dpmpixc%5B68%5Da%5BNA%5Ds%5B019e29e7-9b6f-78bf-8eb9-354e904d887b%5D)![Image 27: Advertisement](https://securepubads.g.doubleclick.net/pcs/view?xai=AKAOjsuFxzch6ZE5bVH1ymReQo-MF0qQ-GTbDc_Tm33uXLaPfkCUmidmImes8behHuEc-XiSUEcYmD70QZ1_5B_qy9ktBBl0rRptOeptXP8la8oT95rCWWRzJ6ka7E749e2uktwkLHnvq9JEEiCGYcefChBcMr_5Oeu_tx4elIFvu9u2jykd_inXfxFUaWHHuxFOMyGe6QVald8_qz27bjG7C8CDlLmHr6suyyHZqx6qrH4rClBgFWo77RCbVgXnyYTYfCgjDFBl4fbtGu6xn7jVC61pwfq7E_EGndNK8VERlFZ40xYJG_j_NvSEc4kD875ih6sPiwBoSCuMfWDC5S99exfP2b9GU1hi8mSXyq9zdQDSuCT76OIKGHJBFLFDQNSpq2Rni9WD8Pgjk2OZgx6n7FmH8HnjX9FWBwRSPWXUJucKASGdRpBi3QM0nsKZ0Ho0pjXj1Q&sai=AMfl-YTuEzPdQaO99FwQ3vKQJyvom7fYRipeFTs0Ix6BimFR8PooXnhvWGV7BdIeivBwdxnk_k6ZdVWCRGj4AqSCbPVNpygrK4ubqI2dC3ElJKJEdLdXRAtr9mtElhSHSP9FcteY-Fs2JIlz8_zjIh4rhTCCM7GtS6CzFKtRKprZEdzRdNOewdneu3RaXYojfie_E2o6BxvyqBG5j7pJlnp5E0KSbyjVn0TziNZVkBDhmwISunB6o1XPaYrbiEfJcSMY2R61PfADzekg1ltYjbISKfVM-45B3rIg0rdmmspMm_XDqgiaCRuAvIvc7AWBCHtZ1vX_9f9UQ3XIWrCGEvo2fckas30WZL8zX_rZVH9fMLrMyKT-Rs5jD1zlX7mgmIZEAHbbOVaWneC8ViGF7eWhKNqydznN5nLh7TSyN4dWmjCJEnYW&sig=Cg0ArKJSzIUMDlHhY8bLEAE&uach_m=%5BUACH%5D&urlfix=1&adurl=)![Image 28](https://studio.airtory.com/serve/track/bcf1039427731b192cb0e4fa413b84eb/placement/bcf1039427731b192cb0e4fa413b84eb/loaded/pixel?cachebuster=1947017720&referral=www.computerweekly.com&hostile-frame=true&n=1778819506226)![Image 29](https://studio.airtory.com/serve/track/bcf1039427731b192cb0e4fa413b84eb/placement/bcf1039427731b192cb0e4fa413b84eb/view/pixel?cachebuster=1947017720&referral=www.computerweekly.com&n=1778819508243)