Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Privacy Security

Red Cross Blood Service Admits To Personal Data Breach Affecting Half a Million Donors (abc.net.au) 32

Posted by msmash from the security-woes dept.
The personal data of 550,000 blood donors that includes information about "at-risk sexual behaviour" has been leaked from the Red Cross Blood Service in what has been described as Australia's largest security breach. From an ABC report:The organisation said it was told on Wednesday that a file containing donor information was placed on an "insecure computer environment" and "accessed by an unauthorised person." The file contained the information of blood donors from between 2010 and 2016. The data came from an online application form and included "personal details" and identifying information including names, gender, addresses and dates of birth, a Red Cross statement said. Red Cross Blood Service chief executive Shelly Park said "due to human error" the unsecured data had been posted on a website by a contractor who maintains and develops the Red Cross website.
This discussion has been archived. No new comments can be posted.

Red Cross Blood Service Admits To Personal Data Breach Affecting Half a Million Donors More

Red Cross Blood Service Admits To Personal Data Breach Affecting Half a Million Donors

Comments Filter:

  • American Red Cross doesn't like good English blood! (probably because giants on bean stalks can smell it and get irate at the smell) I've tried several times but they're scared I have mad cow disease.

    Don't know if the Aussies would take my blood, they're already mad, but they can't have it now.

    • Same in Canada, I was in France for 3 months in the 80s so I am permaban and cannot give blood, organs or tissues in Canada. Too bad for them as I am O+ and they made vaccine with my VZV immunoglobulin or something

  • . . . somebody copied the database to a thumb drive, OR somebody emailed the file outside the corporate network. . .

    Or, the short version, somebody did something stupid that they were likely specifically told NOT to do in a security briefing that they either scanned or pencil-whipped. . . .

    • contractor who maintains and develops the Red Cross website.

      so they want with the low bidder over seas guys?

    • Well this is the year 2016 where hackers are no longer the equivalent of nuisance where their attacks were just a mild inconvenience. Today such breaches are serious and can affect people's lives. The Red Cross should had filled the USB ports with Glue and locked down the PC's to prevent some stupid person from accidentally leaking a major problem.

  • Worse than Ashley Madison (Score:3)

    by GuB-42 ( 2483988 ) on Friday October 28, 2016 @10:37AM (#53168315)

    Blood donations forms typically include very sensitive questions like your number of sex partners, if it is not a clear "are you cheating?".
    With Ashley Madison, where the mere presence of an account is a very weak proof of infidelity. In fact, considering the number of actual women present of the site, the chance of a husband cheating his wife through this site is almost zero (unless bots count). But if you answer "yes" to one of the sensitive questions in a blood donor questionnaire, it can be considered a definite proof.

  • Doesn't make sense (Score:5, Insightful)

    by bagofbeans ( 567926 ) on Friday October 28, 2016 @12:39PM (#53169135)

    Why would the website developer have access to the donor database?

  • "due to human error"? (Score:3)

    by PJ6 ( 1151747 ) on Friday October 28, 2016 @01:38PM (#53169507)

    [...] the unsecured data had been posted on a website by a contractor who maintains and develops the Red Cross website.

    Sorry, but could someone please explain to me how is it even possible to do that accidentally?

    • [...] the unsecured data had been posted on a website by a contractor who maintains and develops the Red Cross website.

      Sorry, but could someone please explain to me how is it even possible to do that accidentally?

      Hellary and the DNC did it on purpose. And Mexican rapists. And that Baldwin guy. And Megyn Kelly. And Muslims and Bill Maher.

      It all makes perfect sense now doesn't it?

  • Neither TFA nor the summary make it clear that this was just the Australia Red Cross. No indications so far that any other countries have suffered a similar breach.

Slashdot Top Deals

BLISS is ignorance.

Close