Water being poured into a glass to drink

Southern Water data breach: A wake-up call for cybersecurity

A recent article in Smart Water magazine highlighted the potentially devastating consequences if enhanced cybersecurity is not adopted across the sector. According to the writer:

“As cyber threats grow in sophistication, governments, utilities, and private entities must collaborate to safeguard water systems, which are not just critical to public health and safety but also to national security.”

The article looked at cyberattacks in North America, as well as the recent Southern Water data breach closer to home. It warned against cybercriminals who may hope to disrupt water services for political advantage.

What happened in the Southern Water data breach?

In January 2024, cyber criminals broke into Southern Water’s systems and stole the personal details of up to 500,000 customers and employees. The Russia-linked Black Basta ransomware group claimed responsibility for the hack.   

On this occasion, no services were impacted. However, the attack raised concerns about the security of the UK’s critical infrastructure and the possible disruption an outage could cause. What’s more, a vast amount of data, including names, bank details, and identity documents, was stolen in the Southern Water data breach. Data that lawyers fear could have been stolen to sell on the dark web.  

The Southern Water data breach is especially concerning as it includes financial and banking information. 

What data was stolen in the Southern Water data breach?

Southern Water claims that only a fraction of customers were compromised (5-10%). However, it provides water services to 2.5 million customers and wastewater services to more than 4.7 million customers, so this is still potentially a huge data breach.

  • Customer names, dates of birth, National Insurance numbers, bank account numbers, sort codes, and reference numbers have likely been accessed by cybercriminals
  • The HR documents and identity documents (e.g. passports, driving licenses and utility bills) of current and former employees may also have been compromised


Even though Southern Water claims none of its customers’ data has been published online following the cyberattack, this doesn’t mean it is safe. The information could still be in the hands of hackers who might use it for fraud, identity theft, or other malicious activities in the future.

Are you eligible to join the Southern Water data breach compensation claim?

Are you affected? If so, you could be due compensation. Watch our video to learn more.  

Claim compensation now!

Can you make a no-win, no-fee Southern Water data breach claim? Our simple eligibility checker provides instant clarity. Answer a few straightforward questions, and you’ll know if you could qualify for a Southern Water data breach group action.

Check Your Eligibility

You may also like:

Thousands of drivers given permission to sue BMW for illegal emissions devices

In January 2024, the High Court ruled that drivers could sue BMW for fitting some diesel vehicles with devices that tricked emissions tests. The illegal devices made it seem like BMW’s diesel cars were less-polluting than they actually were.

Asda equal pay claim: Can store workers fight for fair wages?

Asda store workers may be underpaid. Check if you qualify for an equal pay claim and take action to seek the compensation you deserve.

Capita data breach: Legal response & ongoing investigations

Capita’s data breach exposed pension holders’ personal data. Stay updated on the latest legal action, investigations, and regulatory responses.

You might also like

See more resources

Several bottles of Johnson's baby powder on a store shelf, symbolising the Johnson and Johnson talc lawsuit over alleged asbestos contamination and cancer risks.
  • News, Product Liability

Johnson & Johnson talc lawsuit in the UK: What you need to know

A UK lawsuit claims Johnson & Johnson’s talc products cause cancer. Learn about the case,...
Low-angle view of people walking in a city, symbolising unity and collective action, related to key facts about group litigation for seeking justice.
  • News

10 must-know facts about group litigation for first-time claimants

Discover 10 essential facts about group litigation for first-time claimants. Learn how joining a group...
  • News, Travel

Flight cancelled or delayed for 3+ hours? You could be due compensation!

Flight delays and cancellations can completely disrupt your travel plans, costing you time, money, and...

Did you know we have a newsletter?

Sign up for our newsletter to stay up to date.

We connect consumers with their legal dream teams to ensure they get the compensation and support they deserve.

claims
About
Legal
Connect

Join the Claim is not a law firm. We connect individuals with top law firms for group action claims, and our service is free to use. While we may receive a fee from the law firms we introduce you to, this will not affect your costs or compensation. We are not responsible for the advice or services provided by these firms. Please note, nothing on this website is legal advice, and while we check claim eligibility, we cannot guarantee a law firm will accept a case.

Join the claim is a registered trading name of Big on Media ltd. Big on Media is registered in the United Kingdom under licence number 09878028 with its registered office located at Big on Media, 6 Sunderland Street, Tickhill, Doncaster, DN11 9QJ

© Join the Claim All Rights Reserved | 2025

Go to claims