UK-based business process outsourcing company Capita has confirmed that the data of its pension clients was likely to have been hacked during a recent cyber incident.

The company confirmed its Microsoft Office 365 applications had been affected in March, but last month said there was no evidence of any data being compromised. Despite this initial confidence, the Financial Times on Thursday reported that Capita confirmed to its pension clients that some data it processed was likely stolen during the incident.

The report notes that a large team had searched the affected servers and identified that some pensions data it processes on behalf of its clients “is likely to have been exfiltrated.” It added that there was “no evidence” that the data was available on the dark web, and the company has a third-party specialist checking on a regular basis.

Capita said that its investigations are expected to be finalised by the end of next week.

In a statement, a spokesperson for the company said: Capita is working closely with specialist advisers and forensic experts in investigating the incident to provide assurance around any potential customer, supplier or colleague data exfiltration.”

Share Story: