Sage accounting software warns customers over data breach

UK accounting software vendor Sage has reported a data breach that may have exposed salary and banking information from hundreds of its customers.

The Financial Times (FT) reported on Saturday that a breach at Sage may have exposed personal and salary as well as bank account details for employees of as many as 300 UK companies.

Sage, which sells its software in 23 countries including Australia and competes with local startups such as Xero, told 200 UK businesses customers that the details may have been exposed in the breach, according to FT.

Precise details about the breach, including whether it was carried out by an external hacker, are not clear.

In a statement on its UK homepage on Saturday, Sage said it was aware there had been “some unauthorised access using an internal login to the data of a small number of our UK customers”.

The company said it was working with the authorities to investigate the situation.

The breach was first reported by Richard De Vere on, a security consultancy. De Vere, who said he had talked with Sage about the incident, said the company confirmed that an employee caused the breach. His sources claimed the breach occurred two days before Sage told customers.

However, a spokeswoman for Sage was not able to confirm to CSO Australia whether or not the breach was carried out by an employee — only that Sage’s investigators were aware the breach occurred after someone had used internal login credentials to access the data.

“We are investigating unauthorised access to customer information using an internal login,” the spokeswoman said.

“We cannot comment further whilst we work with the authorities to investigate – our customers remain our first priority and we are speaking directly with those affected.”

According to FT sources, one Sage employee’s internal login details were used to access protected data in recent weeks.

Sage has millions of customers worldwide and is, as the BBC notes, the only listed tech company on the FTSE 100. The only other tech firm on the index was ARM Holdings, which Japanese telco SoftBank has agreed to acquire for $32bn (£24.3bn, AUD$41bn).

UK businesses are required by law to report data breaches to the Information Commissioner’s Office.

The UK hasn’t experienced a breach on the scale of Sony Pictures Entertainment or US retailer Target, however the nation is on high alert after last year’s breach of UK ISP TalkTalk which stemmed from a simple security flaw that resulted in the exposure of over 100,000 customers details.

A UK parliamentary report in June urged the government to implement laws that cut CEO compensation in cases where security has been neglected.

Join the CSO newsletter!

Error: Please check your email address.

Tags BBCUK accounting softwareFTSE100sageTheAntiSocialEngineer.comSoftbankCSO Australiacyber security

More about ARMCSOPreciseSageSonyXero

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Liam Tung

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts