The personal details of nearly 800 Edge Hill University students were sent out in an email resulting in a data breach incident.
The email, sent by a university staff member to 53 students, mistakenly contained 798 other students’ addresses, email addresses, course enrolment details and student network passwords.
However, the university immediately implemented its breach management recovery plan and informed the affected students and offered them support and advice.
Source: https://www.databreaches.net/uk-probe-at-edge-hill-university-after-student-data-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/edge-hill-university
"id": "edg222310123",
"linkid": "edge-hill-university",
"type": "Data Leak",
"date": "10/2011",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': '798 students',
'industry': 'Education',
'name': 'Edge Hill University',
'type': 'Educational Institution'}],
'attack_vector': 'Email',
'data_breach': {'number_of_records_exposed': '798',
'personally_identifiable_information': ['Addresses',
'Email Addresses',
'Course Enrolment '
'Details',
'Student Network '
'Passwords'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Identifiable '
'Information']},
'description': 'The personal details of nearly 800 Edge Hill University '
'students were sent out in an email resulting in a data breach '
'incident.',
'impact': {'data_compromised': ['Addresses',
'Email Addresses',
'Course Enrolment Details',
'Student Network Passwords']},
'motivation': 'Accidental',
'post_incident_analysis': {'root_causes': 'Human Error'},
'response': {'communication_strategy': 'Informed affected students, offered '
'support and advice',
'incident_response_plan_activated': 'Yes'},
'threat_actor': 'University Staff Member',
'title': 'Edge Hill University Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error'}