A UK energy company has fallen victim to a cyberattack that resulted in the theft of £700,000, according to company reports. The hackers successfully intercepted and redirected a payment that was intended for a contractor, causing the funds to be deposited into an account controlled by the attackers.

The incident represents a type of business email compromise attack where cybercriminals manipulate payment processes to redirect funds to unauthorized accounts. Such attacks typically involve hackers gaining access to email systems or intercepting payment communications to alter banking details.

The energy company has not been publicly identified, and details about how the breach occurred or when it was discovered have not been disclosed. The incident highlights ongoing cybersecurity challenges facing critical infrastructure companies in the UK.

Payment redirection fraud has become an increasingly common threat to businesses across various sectors, with attackers often targeting large transactions between companies and their suppliers or contractors. Organizations are typically advised to implement additional verification procedures for payment changes and banking detail modifications to prevent such incidents.