Warsaw University of Technology has informed that a data leak has occurred on the Remote Learning Center (OKNO), which may cause a breach of personal data.

Warsaw University of Technology recommends that persons using the platform should report the leak of personal details, mainly ID card number and PESEL identification number. It is recommended to file a credit block to the Credit Information Bureau (BIK), which guarantees that users will receive alerts if someone tries to obtain a loan using the stolen personal data.

The Trusted Third Party portal was the first to inform about the incident thanks to a tipper who sent a copy of the database from the OKNO platform. Data leak may affect up to 5,000 people.

The leaked data is quite extensive, including names, surnames along with ID card and PESEL numbers, addresses, parents’ names, mother’s maiden names, date and place of birth, e-mail addresses, usernames, telephone numbers and tax identification numbers, if invoices were issued.

According to the TTP, the database also contains the history of education of several thousand people, together with grades and payment history, as well as the content of tens of thousands of emails. It is suspected that the leak may affect the last twelve years and candidates for engineering studies from the past two years.

According to the TTP, the hacker’s goal may be to motivate the authorities of the University of Technology to place greater emphasis on the security of the IT systems storing student data, because the link to the database was only submitted to the portal’s editorial staff, without exposing users to danger.