Companies House IT Update Likely Cause of Security Breach Allowing Data Edits

The UK's Companies House has referred itself to the Information Commissioner’s Office, stating that a system update five months ago was the probable cause of a security breach that allowed logged-in users to view and edit other companies' details without consent.

16 Mar, 12:12 — 17 Mar, 04:18

Post Share

The Story

What 4 sources agree on, dispute, and miss

What sources agree on

Companies House experienced a security breach
An IT update is the probable cause of the glitch
The breach allowed users to view and edit other companies' details

Key claims3 agreed · 1 unverified

✓

The security breach was caused by an IT update five months ago

agreed·FTThe Independent

✓

The glitch allowed logged-in users to view and edit other companies' details without consent

agreed·BBCThe Independent

✓

Companies House has referred itself to the Information Commissioner’s Office

agreed·FTBBC

The bug allowed access by pressing the back key on a web browser

unverified·The Independent

Coverage gaps

EU sanctions on Chinese and Iranian companies for cyber attacks

ReportedRappler

MissingFTBBCThe Independent

The specific 'WebFiling' service was affected by the bug

ReportedThe Independent

MissingFTBBCRappler

The Story

Analyzing sources…

Why this matters

Companies House is the official UK register of companies, holding sensitive corporate and personal data. A security breach allowing unauthorized data edits poses significant risks to corporate integrity, identity, and financial security, potentially impacting thousands of businesses and individuals.

Source Diversity

High (56/100)

4 sources30/33

Spectrum spread— 3/5 buckets covered17/33

Far L1

Far Left (1)

The Independent

Left2

Left (2)

RapplerBBC

Center1

Center (1)

Right

Far R

Geographic diversity— 2 regions9/34

UK3Philippines1

Political spectrum

LeftCenterRight

independent

rappler

bbc

Outlet rating This story

SourceOutletiGeneral editorial lean of the outletStoryiHow they covered this specific storyToneFactuality

The Independentcenter-leftleftanalyticalMostly Factualdetailed technical aspects of the glitch

Rapplercenter-leftcenter-leftneutralMostly Factualfocused on international cyber-security sanctions

Coverage leans: balanced

The coverage is largely factual and descriptive, with UK-focused outlets detailing the technical aspects and implications of the Companies House breach, while one international outlet covers a tangentially related but distinct cyber-security story.

Sources

Showing 4 of 4 sources

BBCHigh17h ago

Firms urged to check if other users edited their data on Companies House

The glitch meant logged-in users could view and edit other companies' details without their consent.

Read full article →

FTVery High16h ago

Companies House says system update is probable cause of security breach

The UK’s official corporate register has referred itself to the Information Commissioner’s Office

Read full article →

The IndependentMostly Factual17h ago

Companies House reveals IT update five months ago likely cause of major glitch

A bug in its WebFiling service allowed users to access other companies’ details by pressing the back key on their web browser.

By Holly Williams

Read full article →

RapplerMostly Factual1h ago

EU sanctions Chinese, Iranian companies for cyber attacks

The European Union imposes sanctions on China-based Integrity Technology Group and Anxun Information Technology, and Iranian company Emennet Pasargad

By Reuters

Read full article →

Coverage Timeline

First report: The Independent · 16 Mar, 12:12|Full coverage: All 4 sources within 16h|Window: 16h

Left-leaningCenterRight-leaning

The Independent16 Mar, 12:12First to report

Companies House reveals IT update five months ago likely cause of major glitch

BBC16 Mar, 12:19

Firms urged to check if other users edited their data on Companies House

FT16 Mar, 12:58

Companies House says system update is probable cause of security breach

15h later

Rappler17 Mar, 04:18Latest update

EU sanctions Chinese, Iranian companies for cyber attacks

Story evolution

The narrative initially focused on the technical details and immediate impact of the Companies House breach, then broadened to include official responses and advice for affected companies, with one outlet also covering broader international cyber-security actions.

Initial ReportingMarch 16 morning

Early reports confirm the Companies House glitch, detailing its cause as an IT update and the mechanism of unauthorized access.

Official Response & AdviceMarch 16 midday

Companies House refers itself to the ICO, and firms are urged to check their data for unauthorized edits.

Broader Cyber ContextMarch 17 morning

An international outlet reports on unrelated EU sanctions against cyberattack-linked companies, providing a wider context of cyber threats.

Key entities

Companies HouseUK's official corporate register, affected by the breach Information Commissioner’s Office (ICO)Regulatory body to which Companies House referred itself Integrity Technology GroupChina-based company sanctioned by EU for cyber attacks Anxun Information TechnologyChina-based company sanctioned by EU for cyber attacks Emennet PasargadIranian company sanctioned by EU for cyber attacks

PERSPECTA

PERSPECTA

Companies House IT Update Likely Cause of Security Breach Allowing Data Edits

The Story

What sources agree on

Key claims3 agreed · 1 unverified

Coverage gaps

The Story

Why this matters

Source Diversity

Source Diversity

Political spectrum

Sources

Firms urged to check if other users edited their data on Companies House

Companies House says system update is probable cause of security breach

Companies House reveals IT update five months ago likely cause of major glitch

EU sanctions Chinese, Iranian companies for cyber attacks

Coverage Timeline

Companies House reveals IT update five months ago likely cause of major glitch

Firms urged to check if other users edited their data on Companies House

Companies House says system update is probable cause of security breach

EU sanctions Chinese, Iranian companies for cyber attacks

Story evolution

Key entities

Related Stories

Webtoon Entertainment Announces $2.8 Billion Paid to Creators, Plans for More

A photo of Iran’s bombed schoolgirl graveyard went around the world. Was it real, or AI?

Challenges of Human Oversight in AI Development

UK Drone Interceptor Startup Seeks Funding at $1 Billion Valuation

PERSPECTA

Why this matters

Story evolution

Key entities

The Story

What sources agree on

Key claims3 agreed · 1 unverified

Coverage gaps

Political spectrum

Coverage matrix