Australian University Third-Party Data Breach, 1 September 2023

The University of Sydney has disclosed a data breach potentially affecting international students

The data breach involved a third-party provider, still undisclosed

Company Statement: Cyber incident
Source: University of Sydney caught up in third-party data breach | iTNews

View more incidents from Education and Training sector and incidents relating to Third-Party Risk

The University of Sydney has disclosed a data breach potentially affecting international students.

A notification, published on Thursday afternoon, does not name the third-party but says that it held personal data of some “recently applied and enrolled international applicants”.

In the statement, the University reported “At this stage our provisional findings indicate that no domestic students, staff, alumni or donors’ data has been affected. The University takes its responsibility to protect the data of our community very seriously, and we have notified relevant cyber security authorities as well as the NSW Privacy Commissioner.”

It said that no other systems were affected but that a “detailed investigation may take some time” to complete.

There currently is no indication as to what type of personal information has been breached.