In late March 2025, a threat actor claimed to have stolen approximately 144GB of data from Royal Mail by compromising Spectos GmbH, a data analytics vendor used by Royal Mail for postal service performance monitoring. Royal Mail confirmed it was investigating the incident. The stolen data was offered for sale on a cybercrime forum and included Royal Mail customer names and delivery addresses, delivery dates, Mailchimp marketing lists, Zoom recordings of internal meetings, and various operational documents and reports. Royal Mail stated its own systems were not directly compromised — only data that had been shared with and stored by Spectos. This is Royal Mail’s second significant security incident following the January 2023 LockBit ransomware attack.