Tim Stonebridge our Chief Security Officer at Sure, said:
“Sure has been targeted by a phishing attack which has resulted in the disclosure of fewer than 400 suppliers’, employees’ and former employees’ data across the three islands of Guernsey, Jersey and the Isle of Man.
The data was limited in nature and no existing customers' data has been compromised.
Contacting those affected has been our priority and we have now informed them and offered relevant advice, as well as making the Data Protection Authorities in each island aware of the attack.
The loss of data was the result of human error and only affected one staff email account which our systems identified and subsequently shut down. The attack was contained and Sure’s systems were never compromised.
While the data that has been stolen cannot be used in isolation, we have advised those affected to be extra vigilant.
We’d like to apologise to all those who have been affected. Security is of paramount importance to Sure and our employees undergo regular cybersecurity training. We are constantly reviewing our training programmes and will use this example to inform future learning.”