Helsinki data breach|The city has been aware of the information security risks of Helsinki’s schools and kindergartens for years. In the spring of 2024, the threatening images came true.
Helsinki the city’s own materials reveal that information security risks have been known for a long time.
The issue has been brought up especially in the field of education and training, where the data breach that took place at the end of April targeted.
Staff weak expertise in information security issues can be seen, for example, in the city’s own report called an information financial statement, the most recent of which is the 2022 report.
It appears from the 2022 financial statements that only 310 employees had completed the DigiABC staff training that year.
Since then, the number has grown.
At the beginning of 2024, a total of 6,450 employees out of the industry’s 15,000 employees had completed the training. That is already more than 40 percent of the industry’s employees.
In the reports, three years in a row, the fact that the managers of the industry did not require new employees to complete basic data protection training was highlighted.
Weak information security expertise had consequences, the document shows.
According to the report, the situation led to an increase in the number of data security breaches from the previous year.
“It’s about them [tietoturvaloukkauksissa] is often due to elementary mistakes in operating methods”, the financial statements state.
“[alkeelliset toimintatavat] is due to the fact that the basic understanding of processing personal data has remained incomplete.”
In 2022, a total of 15 data security breaches occurred in the field of education and training. On the other hand, for example, in the social and health sector, almost 300 cases where personal data ended up in the wrong hands were reported.
The financial statements for 2023 will be completed next month.
A data breach connection, a hacker gained access to a network drive that stored more than 10 million documents.
In the worst data breach, the personal data of around 150,000 learners, their guardians and all of the city’s almost 40,000 employees have ended up in the hands of a criminal.
Head of Education and Training Fairy tale Järvenkallas described as normal practice for HS that even sensitive data was stored at least temporarily on that network disk.
In the HS interview, Järvenkallas also said that staff participation in DigiABC trainings has been increased. However, less than half of the industry’s personnel have completed the training.
Insufficient training has already been pointed out in the industry in the 2018 financial statements.
A year In the 2021 evaluation report, it is stated that the city of Helsinki is only partially prepared for digital security risks. According to the report, there is still room for improvement in the organization of digital security.
In the most recent budget, the lack of functionality of information systems was seen as a risk factor for the management of the education sector.
#Helsinki #data #breach #document #reveals #lynching #compulsory #education #led #elementary #mistakes