OneClass is a student-help platform based out of Toronto, Canada. It is designed to help university students study faster and easier, simplifying their coursework and letting them better enjoy their university years, but it accepts students above 13 years of age.
According to VPN Monitor, the leak was a public database; this may not seem overly concerning to those unfamiliar with data security, but it is a massive issue. People have tons of access to public databases, making their lives much more manageable. Some prevalent examples of this are Oracle and WHO (World Health Organization). The issue with this particular leak is that the database included personally identifying information of lecturers and users.
The leak occurred when a OneClass database was left available to the public. OneClass told VPN Monitor that the database included only fake names and information – for research purposes – and that no users or teachers had anything to fear. Unfortunately, VPN Monitor’s investigation showed that the data matched that of same-named individuals on other (legal) public databases.
This leak occurred on June 29th, 2020.
The leak impacts certain users of the site, as well as instructors that assist with it. Some affected students may be minors, as the company helps high schoolers and university students.
The leak affected more than a million individuals and files. The exact number was not released, as VPN Monitor didn’t see the full extent of the database, and OneClass denied any issues related to the leak.