Wymondham High Academy suffered a data breach after a staff member accidentally sent a message containing information about children who were referred to its wellbeing services with anxiety to the entire school.
The email contained the names of every individual that had been referred for support with anxiety.
However, the school recalled the message and contacted the families of the children affected by the breach to explain what has happened.
TPRM report: https://scoringcyber.rankiteo.com/company/wymondham-high-academy-trust
"id": "wym202221122",
"linkid": "wymondham-high-academy-trust",
"type": "Breach",
"date": "09/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Education',
'location': 'Wymondham, UK',
'name': 'Wymondham High Academy',
'type': 'Educational Institution'}],
'attack_vector': 'Accidental Email Disclosure',
'data_breach': {'personally_identifiable_information': 'Names of individuals '
'referred for support '
'with anxiety',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personally Identifiable '
'Information'},
'description': 'Wymondham High Academy suffered a data breach after a staff '
'member accidentally sent a message containing information '
'about children who were referred to its wellbeing services '
'with anxiety to the entire school.',
'impact': {'data_compromised': ['Names of individuals referred for support '
'with anxiety']},
'motivation': 'Accidental',
'post_incident_analysis': {'root_causes': 'Human Error'},
'response': {'communication_strategy': ['Contacted the families of the '
'children affected by the breach to '
'explain what has happened'],
'containment_measures': ['Recalled the message']},
'title': 'Data Breach at Wymondham High Academy',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error'}