Following data breach, Sage employee arrested at Heathrow airport

Following data breach, Sage employee arrested at Heathrow airport

City of London Police arrested a 32-year-old woman at Heathrow airport yesterday on “suspicion of conspiracy to defraud”.

According to police, the arrested woman is a current employee of Sage.

Sage made the headlines earlier this week after the online accounting and payroll company announced it had suffered a data breach, putting the details of approximately 280 UK and Irish companies at risk.

Sign up to our free newsletter.
Security news, advice, and tips.

Sage described this as a “small number” of their customers. And it is a small percentage, considering over half a million British businesses are thought to be using Sage’s payroll software.

But, of course, that’s little consolation if you’re one of the customers whose data was put at risk by the breach. And the number alone doesn’t tell us anything about the size of the companies affected, or how many employees of those companies could also potentially have had their identities and financial details put in danger.

Police say that the woman arrested at Heathrow airport has been released on bail.

Sage said that an internal login had been used to access the sensitive information.

It’s worth underlining that the woman arrested has not been charged with any offence, let alone convicted… but this might be a timely reminder for all businesses to not focus solely on external attackers over the internet but recognise that there can also be considerable dangers posed by insiders if your workforce turns rogue.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.