The data breach that exposed a backup database with donor personal information was confirmed by the Australian Red Cross Blood Service.
Given the nature of the victim, the Australian Red Cross Blood Service, security experts rank this data leak as one of the worst.
A backup database that contained the personal information of 550,000 people was unintentionally made public by one of its third-party service providers.
A total of 1.3 million records—including phone numbers, physical and email addresses, gender, blood type, donation type, donation dates, and eligibility inquiries—are contained in the 1.74 gigabyte database.
Source: https://securityaffairs.com/52833/data-breach/red-cross-blood-service-incident.html
TPRM report: https://scoringcyber.rankiteo.com/company/red-cross-blood-services
"id": "red1112311023",
"linkid": "red-cross-blood-services",
"type": "Breach",
"date": "10/2016",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'customers_affected': '550,000',
'industry': 'Healthcare',
'location': 'Australia',
'name': 'Australian Red Cross Blood Service',
'type': 'Non-Profit Organization'}],
'attack_vector': 'Accidental Exposure',
'data_breach': {'number_of_records_exposed': '1.3 million',
'personally_identifiable_information': ['Phone numbers',
'Physical addresses',
'Email addresses',
'Gender',
'Blood type',
'Donation type',
'Donation dates',
'Eligibility '
'inquiries'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information']},
'description': 'The data breach that exposed a backup database with donor '
'personal information was confirmed by the Australian Red '
'Cross Blood Service.',
'impact': {'data_compromised': ['Phone numbers',
'Physical addresses',
'Email addresses',
'Gender',
'Blood type',
'Donation type',
'Donation dates',
'Eligibility inquiries']},
'title': 'Australian Red Cross Blood Service Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Improper Access Control'}