The Department of Health has been forced to apologise after the personal details of hundreds of doctors – including addresses, phone numbers, sexual orientation and previous convictions – were made available online.
The security breach is the latest disaster to hit a troubled NHS online application system for specialist training posts.
Last month the government had to offer interviews to junior doctors who appeared to have been wrongly disqualified after the Medical Training Application Service (MTAS) spiralled into chaos.
The online application system crashed under the pressure of thousands of junior doctors trying to submit applications simultaneously. British Medical Association representatives called for the scheme to be scrapped and the DoH was forced to call a snap review of the scheme.
Now it has emerged that doctors’ personal details were available online for several hours from 9am yesterday. The security breach was reported by Channel 4 News, which said: “It appears that the information was downloaded onto Excel files and placed on an unsecured website that could be accessed by anyone through the internet.”
Last night the DoH told Channel 4 that the team administering MTAS did not know how long the data had been available nor how many people had accessed the files.
The problem has now been fixed, the DoH has confirmed. A spokesperson said: “We apologise to any applicants whose details have been improperly accessed. This is a very serious matter and is under investigation.
"This URL was made available to a strictly limited number of people making checks as part of the employment process. This information was never publicly available through the MTAS website and was only accessible for only a short period of time after details of the URL were leaked.”
He added: “The MTAS team fixed the problem as soon as it was brought to their attention."
Find your next job with computerworld UK jobs