Swinburne University of Technology confirmed that personal details of staff, students, and external parties are exposed in a data breach.
The information of around 5,200 Swinburne staff and 100 Swinburne students was available on the internet which includes details such as name, email address, and, in some cases, contact number also.
This data was event registration information from multiple events since 2013. The event registration webpage is no longer available.
The university stated that they have taken immediate action and have removed the information and conducted an audit across other similar sites.
Swinburne is currently in the process of contacting all individuals who has been impacted by the data breach to apologize to them and provide support.
The university is also contacting 200 other individuals not connected to Swinburne who had registered for the event and whose information was also exposed.
The breach has been reported to the Office of the Australian Information Commissioner (OAIC), the Office of the Victorian Information Commissioner (OVIC), the Tertiary Education Quality and Standards Agency (TESQA), and the Victorian Education Department.