8 April 2022: The UK office of DC Advisory has been subject to a cyber security incident involving illegal access by a third-party. This involved unauthorised access to its computer systems in its UK, Italian and Dutch markets. DC Advisory took immediate action including the appointment of external forensic cyber security experts.
DC Advisory has notified regulators and law enforcement agencies, being the Financial Conduct Authority, Information Commissioner's Office, and Action Fraud.
To date, there has been no material impact to DC Advisory’s business operations, which are solely focused on client advisory activity. DC Advisory is working with cyber security experts to identify the extent of any data exposure and is taking every measure to communicate with and assist any potential affected parties.
DC Advisory takes its obligations around IT and data security extremely seriously. IT systems and infrastructure are regularly reviewed, with considerable investment made to ensure an ongoing robust and up to date security framework.
A further update will be made, as appropriate, and direct communications with impacted individuals will be sent.
In the meantime, should you have any concerns, please contact cybersecurity@dcadvisory.com.
Update made: 13 April 2022
DC Advisory has confirmed this event was contained and our systems confirmed as secure from this incident on Friday 1 April. Measures are now in place beyond the pre-existing best practice for UK financial institutions for additional security. We continue to investigate the full impact of this data incident and communicate with all potentially impacted parties.
Update made: 26 April 2022
DC Advisory continues to monitor any publication of potentially compromised data, and continues to notify all impacted parties, where relevant, as quickly as possible.