Personal Data Protection Authority (KVKK) made a rare statement. In the statement made by KVKK, it was stated that there was a data breach in 3 institutions. These institutions; Tokat Gaziosmanpaşa University, Havaist Taşımacılık Sanayi ve Ticaret A.Ş. and Johnson Controls Air Conditioning and Service Soğutma San. and Tic. Ltd. Ltd. was. The most important of these was the data breach at Tokat Gaziosmanpaşa University.
According to the statement made by KVKK, Tokat Gaziosmanpaşa University was hacked on September 11, 2023. University officials detected this situation on October 3. The personal data of students studying at Reşadiye Vocational School was leaked as a result of the attack. KVKK announced that more than 700 students were affected by this situation and that their identity and contact information, as well as visual and audio recording data, were leaked.
The statement made by KVKK is as follows:
In summary, in the personal data breach notification submitted to the Board by Tokat Gaziosmanpaşa University, which is the data controller;
Within the scope of threat intelligence activities carried out by the National Cyber Incident Response Center (USOM), the data controller was notified on 03.10.2023 that student information, which was considered to belong to Reşadiye Vocational School, was sold or attempted to be sold by attackers on various forum sites on the internet,
During the investigations, it was determined that the data controller’s systems were logged in as authorized users from foreign IP addresses,
The violation occurred on 11.09.2023 and was detected on 03.10.2023,
The relevant group of persons affected by the violation is students,
Data affected by the breach; identity, communication, visual and audio recording data,
The estimated number of people affected by the breach is 741,
Relevant persons can provide information regarding the data breach via the data controller’s e-mail addresses [email protected], [email protected] and telephone numbers 0356 252 16 16/4250-4255-4257.
information is included.
KVKK’s statement about Tokat Gaziosmanpaşa University can be found here, Havaist Taşımacılık Sanayi ve Ticaret A.Ş. You can read its statement about Johnson Controls Klima ve Servis Soğutma San. and Tic. Ltd. Ltd. His statement about it can also be found here.
21903
