Bank details of South Staffs Water customers have been published on the dark web after a cyber attack. The data breach took place in August and saw cyber criminals steal sensitive information. The firm said the “impacted data” included names and address of customers – alongside sort codes and account numbers. In a letter to those affected, it warned their data could be used in fraud cases. In a statement published on the company website, managing director Andy Willicott personally apologised for the incident – although the letter expressed “regret” and did not say sorry. The firm insisted: “Consumers can have complete confidence that the water we supply is safe.” But the incident stunned customers who received the letter in the past few days. The document gave no details of how the hack beat South Staffs’ security systems.