Data breach on INTO Learning Website
Last week, the INTO Learning website (www.intolearning.ie -site currently unavailable-) was subject to a cyber-attack that resulted in unauthorized access.
As a result some members’ personal data (not financial information) may have been compromised.
This affects members who have an INTO Learning Account for INTO Summer Courses or an INTO Subsearch account.
We have taken down the INTO Learning site as a precaution and are awaiting a full report on the attack from the company that manages the website for us. We are in the process of contacting all affected members directly. When the website is back up and running we will advise members who have such accounts to change their account passwords as a precautionary measure and a matter of best practice.
The breach also affects members who had booked courses/seminars such as Retirement Planning Seminars, Principals Seminars and Trade Union Training. As a result booking for these events is temporarily suspended. We are working to reactivate it as soon as possible.
The INTO Learning website is separate from the INTO membership data base which was not breached in this attack.
The potential risk posed to members by this incident is low but please be assured that we are treating this very seriously. We have informed the Office of the Data Protection Commissioner of the breach and are taking advice and direction from them. We have also notified the Gardai.
We are taking immediate steps to investigate this unauthorised access and to review security on the INTO Learning website. We will commission a cyber security consultant to conduct an investigation in order to determine how this occurred and to avoid any reoccurrence in the future.
Members requiring further information on this matter should contact firstname.lastname@example.org
Date: Monday, 11 September 17