HR Violation: How a Corporate Data Exposure Can Affect Employees

OneHalf, an APAC-based outsourcing firm, inadvertently exposed on GitHub the personal and medical data of hundreds of its staff in addition to the bank details of various Australian businesses. Leaked HR information included names, dates of birth, personal and professional email addresses, phone numbers and blood types. More sensitive data revealed the medical histories of many of its workers. This breach was uncovered by the UpGuard Cyber Risk Research team who found these details on unsecured public GitHub repositories and prevented the future exploitation of this data.