Personal Data Protection Authority (KVKK) official site ITU ETA Foundation Doga College A huge data leak has been announced for
Today, the Personal Data Protection Authority (KVKK) has many new websites on its official website. Data breach notification added. Most notable among these ITU ETA Foundation Doga College based data leak. The official statement on the subject was as follows: “As it is known, paragraph (5) of article 12 of the Law on Protection of Personal Data No. 6698, titled “Obligations regarding data security”, states that “In case the processed personal data is obtained by others illegally, the data controller shall notify the relevant person and the Board as soon as possible. If necessary, the Board may announce this situation on its own website or by any other method it deems appropriate.” its ruling.
Having the title of data controller Arı Innovation and Science Education Services Joint Stock Company (ITU ETA Foundation Doğa College) In summary, in the data breach notification submitted by the Board to the Board;
- – The e-mail access password of an authorized user is captured in the data controller systems,
- -After obtaining the e-mail password, the attacker logs in to this Portal application and accesses other applications and accesses information and leaks data depending on user authorizations,
- -The relevant person groups affected by the violation are employees, students and parents of students,
- – Violation; the name, surname, TR identity number, unit and gross wages of the employees; students’ name and surname, TR ID number, parents’ name; The name, surname, TR ID number, profession and registration amount of the students’ parents are affected,
- -Number of people affected by the violation is 79,997,
- -Related persons [email protected] It is stated that they can get information about the violation from their e-mail address.
Although the investigation on the subject continues, with the Decision of the Personal Data Protection Board dated 17.02.2022 and numbered 2022/157, it was decided to announce the aforementioned data breach notification on the Institution’s website. It is announced to the public with respect.”
Personal Data Protection Authority (KVKK) official site today ITU ETA Foundation Doga College outside TC Acıbadem Mehmet Ali Aydınlar University and Sisli Municipality centered data breach notifications have also been added. On these issues, the following was conveyed:
“The one who has the title of data controller Sisli Municipality In summary, in the data breach notification submitted by the Board to the Board;
- -A cyber attack occurred by installing ransomware on the servers and clients used by the data controller, and the files and folders were encrypted as a result of this attack,
- -The data breach occurred on 12.02.2022 and was detected on the same day,
- -The number of people and records affected by the violation not yet detected,
- -The relevant person groups affected by the breach are employees, users and members,
- – It is stated that there is no information about the data categories affected by the breach, and that the expert review continues.”
having the title of data controller TC Acıbadem Mehmet Ali Aydınlar University In summary, in the data breach notification submitted by the Board to the Board;
- -The data controller has intermittent access to its servers due to ransomware attack,
- -The cyber attack took place on 09.02.2022 and was detected on the same day,
- – As of the date of the data breach notification, the student management application, exam system and switchboard have been made completely seamless and accessible,
- -Works on the complete operation of all systems are continuing, • The relevant person group affected by the violation is users,
- -The personal data categories affected by the breach cannot be determined,
- – The information that the investigations on the subject are continuing by the data controller is included.