( May 11, 2026, 10:15 GMT | Official Statement) -- MLex Summary: UK company South Staffordshire — a water utility — has been fined more than £960,000 by the Information Commissioner’s Office, after a cyberattack exposed the personal data of more than 630,000 customers and employees. The attackers remained undetected for nearly two years, exploiting weak monitoring and poor vulnerability management, the privacy regulator said. The company agreed to a voluntary settlement and will not appeal, the regulator said.* Updated on May 11, 2026 at 11:59 GMT: Corrects the number of affected current and former employees....
Prepare for tomorrow’s regulatory change, today
MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.
Know what others in the room don’t, with features including:
- Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
- Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
- Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
- Curated case files bringing together news, analysis and source documents in a single timeline
Experience MLex today with a 14-day free trial.