Online accounting software company Sage has suffered a data breach, putting the details of a “small number” of its UK and Irish business customers at risk.
As the company briefly noted on its website:
We believe there has been some unauthorised access using an internal login to the data of a small number of our UK customers so we are working closely with the authorities to investigate the situation.
Our customers are always our first priority so we are communicating directly with those who may be affected and giving guidance on measures they can take to protect their security.
If you have any concerns at all, you can reach us on the following contact details:
The dedicated helpline number is 0845 145 3345 - please leave a message with your details and we will get back to you as soon as we can. You can also get in touch with us by emailing us at firstname.lastname@example.org.
Richard De Vere of the AntiSocial Engineer posted this weekend providing further information and commentary, saying that the “personal details and bank account information for employees of as many as 300 large UK companies may have been compromised.”
De Vere went on to warn of the risks of insider threats to all businesses:
“An insider threat can strike any business, Sage have an industry leading product that is secure as many cloud providers are these days. The problem isn’t with Sage, but in how companies manage these insider risks.”
Sage says it has been contacting affected customers.