Newsgather
GeriUK Biobank data incident caused by 'a few bad apples', boss says
UK Biobank data incident caused by 'a few bad apples', boss says
Gelişiyor
BBC World24.04.2026Teknoloji3 dk okuma

UK Biobank data incident caused by 'a few bad apples', boss says

Medical data of 500,000 participants was listed for sale on a Chinese website, prompting a temporary suspension of research access.

Hızlı Bakış

  • UK Biobank has suspended its research platform after de-identified participant data was listed for sale on Alibaba.
  • Boss Sir Rory Collins attributed the breach to 'a few bad apples' at academic institutions and confirmed the listings were removed before any sales occurred.

Yapay zekâ özeti

Neden Önemli?

UK Biobank maintains a vast repository of health data from 500,000 volunteers to assist in medical research. The platform provides access to de-identified information to approved academic institutions.

Yazı boyutu

The boss of UK Biobank Professor Sir Rory Collins has said a "few bad apples" were behind the incident which saw medical data belonging to 500,000 participants listed for sale on a website in China.

Datasets containing de-identified information about its volunteers made available to researchers at three academic institutions were found to have been posted for sale on Alibaba last week, the government said on Thursday.

It said the listings were "swiftly" removed before any purchase took place but the charity is now facing scrutiny over how the incident occurred.

Sir Rory told the BBC he was "angry" and "upset" about it, and the institutions concerned had been banned from its platform.

He added the organisation was "essentially putting science on hold" by temporarily suspending all access to its online research platform while it put additional controls in place "to prevent anything like this happening again".

The Biobank is a collection of health data offered by UK volunteers which has been used to help improvements in detection and treatment of dementia, some cancers and Parkinson's.

Its online research platform allows scientists at approved academic institutions around the world to access its datasets - which include de-identified medical information about participants - for their own research.

"In this case, a few bad apples have taken those data off the platform and they have listed the data for sale," Sir Rory told the BBC Radio 4's Today programme.

"By working swiftly with the UK government and the Chinese government, and we're really grateful for their help, we have been able to get those listings removed before any data were sold."

Technology minister Ian Murray told MPs in the House of Commons on Thursday the data involved in the incident did not include participant's names, addresses, contact details or telephone numbers.

However he said it could include gender, age, month and year of birth, socioeconomic status, lifestyle habits, and measures from biological samples.

Biobank has collected intimate details - including whole body scans, DNA sequences and their medical records - from hundreds of thousands of volunteers for over two decades.

Participants were aged from 40 to 69 when they were recruited between 2006 and 2010.

When asked if Biobank participants could potentially be identified through sharing of its datasets, Sir Rory told Today it was "impossible" to entirely rule out that people could be identified by using its de-identified data and other information.

But he said there was no evidence to suggest this had taken place.

The organisation referred itself to the UK's data watchdog, the Information Commissioner's Office (ICO).

An ICO spokesperson said in a statement on Thursday it had been informed of the incident and was making enquiries.

"People's medical data is highly sensitive information, not only do people expect it to be handled carefully and securely, organisations also have a responsibility under the law," they said.

Jon Baines, senior data protection specialist at law firm Mishcon de Reya, said the regulator would likely be seeking to confirm volunteer information was truly de-identified and, as such, does not constitute personal data under UK law.

Meanwhile, the organisation said there would also be a "comprehensive and forensic board-led investigation of this incident".

Sir Rory acknowledged "we can always do more" to prevent potential misuse, but said it had to balance making data available for scientific discovery and protecting it.

"UK Biobank has allowed discoveries to be made that otherwise would never have emerged about how to prevent and treat diseases like dementia," he told Today.

"The balance then is how do you put in place safeguards to allow that to go on, while doing it in a secure way."

Bundan Sonra Ne Olabilir?

Yapay zekâ öngörüsü — kesinlik taşımaz

  • The ICO will launch a formal investigation into the data handling practices of the involved institutions.

    Çok muhtemel · Haftalar içinde

  • UK Biobank will implement stricter authentication and monitoring protocols for its research platform.

    Çok muhtemel · Aylar içinde

Açık Sorular

  • Which three academic institutions were involved?
  • How exactly did the researchers bypass security controls?
  • What specific penalties will the institutions face?

İlgili Konular

Bu haber ilk olarak şurada yayınlandı: BBC World.

İlgili Haberler

Ulaştırma Bakanı Uraloğlu: Türksat 6A Uzayda 192 Milyon Kilometreyi Geride Bıraktı
Teknoloji·35 dk önce

Ulaştırma Bakanı Uraloğlu: Türksat 6A Uzayda 192 Milyon Kilometreyi Geride Bıraktı

Ulaştırma ve Altyapı Bakanı Abdulkadir Uraloğlu, Türkiye'nin ilk yerli ve milli haberleşme uydusu Türksat 6A'nın uzayda 192 milyon kilometreyi aşarak görevine devam ettiğini belirtti. Uydu, kapsama alanını Hindistan, Tayland, Malezya ve Endonezya'yı da içerecek şekilde genişleterek dünya genelinde erişilen nüfusu 5 milyara çıkardı ve yayın yapan kanal sayısını artırdı.

Habertürk Ekonomi
ファイル転送サービス「ギガファイル便」で障害発生、代替ドメインで暫定運用へ
Gelişiyor·1 sa önce

ファイル転送サービス「ギガファイル便」で障害発生、代替ドメインで暫定運用へ

7月6日、ファイル転送サービス「ギガファイル便」で障害が発生し、多くのユーザーに影響が出た。運営元は代替ドメイン「gigafile.jp」での暫定運用を開始し、従来のURLもドメイン部分を書き換えることでアクセス可能とした。ユーザーは一時的にログアウト状態となり、再ログインが促されている。

ITmedia
Bu konuda daha fazlaUK Biobank