The University of Sydney has suffered a third-party data breach exposing students’ personal information. The university released a notification on 31st August stating that it was made aware of a data breach involving one of their third-party provider. The third-party was not named and the university said that the issue was isolated to a single platform and had no impact on other university systems. The platform held personal data of recently applied and enrolled international applicants. Provisional findings had indicated that no domestic students, staff, alumni or donors’ data were affected. The university took immediate steps to secure their systems and contain the incident. They are still working to determine the nature of the information that may have been assessed and are working to contact impacted students and applicants. The university also stated that they have notified relevant cyber security authorities as well as the NSW Privacy Commissioner.
https://www.sydney.edu.au/about-us/governance-and-structure/cybersecurity/cyber-incident.html
This segment was created for the It’s 5:05 podcast