Cornwall Council Data Breach Exposes Unredacted Complainant PIIs

Summarize with:

ChatGPT Claude.ai Google AI Grok Perplexity

Add as preferred source on Google

A Cornwall Council data breach has occurred, stemming from the improper handling of formal complaints filed against a local official. The breach transpired when the council forwarded documents related to ten complaints to Councillor Dulcie Tudor. 

Though the council attempted to redact the files, the process failed upon opening, thereby exposing the complete PII of all ten complainants, including four individuals who had explicitly withdrawn consent for their names to be shared. 

UK Data Protection and Technical Safeguards

Proper U.K. data protection mandates that PII, especially in sensitive contexts like formal complaints, be rigorously protected from unauthorized disclosure. Reports say the exposed data set contained information that standard protocol dictates must be secured:

• Full names, 
• Home addresses, 
• Email addresses, 
• Telephone numbers.

The situation was exacerbated as Councillor Tudor, in preparing the legal defense, was required to share the unredacted documents with the Free Speech Union, further propagating the compromised data.

These complaints were filed in response to comments the Councillor made during a public meeting concerning gender identity definitions. The failure of what appears to be a digital redaction tool highlights a critical vulnerability in the authority's data processing workflow. 

Impending ICO Investigation and Implications

It is yet unclear whether the data breach has been escalated to the Information Commissioner's Office. The council told her that there was no wrongdoing since the complaints were sent as redacted attachments, the councillor posted.

In other recent news, a Ravenna Hub data breach exposed child information available on the student admissions portal. Last month, the U.K. government proposed a new cyber action plan after admitting flaws in the nation’s cyber resilience strategy.

Related

Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond

NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities

Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists

Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program

WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock

SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 

Your Weekly Cybersecurity Briefing

Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.

Subscribe for Free

Please enter a valid email address.

Most Popular

Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond

NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities

Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists

Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program

WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock

SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 

Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond

NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities

Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists

Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program

WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock

SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns