UK BIOBANK DATA OF 500K BRITONS LISTED FOR SALE ON ALIBABA

The data breach affects volunteers in the UK Biobank, a long-running health research project that collects genetic and medical information from British participants. Three separate listings offering the records appeared on Alibaba before being taken down. Technology minister Penny Mordaunt confirmed the incident to Parliament, noting the information was described as "de-identified"—meaning personal names and identifiers had been removed. However, the listings still contained sensitive health and genetic data that could potentially be used to identify individuals when combined with other datasets. UK Biobank is a publicly-funded research initiative storing biological samples and health information from over 500,000 volunteers. The project supports medical research into diseases including cancer, heart disease, and diabetes. Participants agreed to have their data used for approved research purposes only. Investigators are now working to determine how the data reached Alibaba and who attempted to sell it. The government has not disclosed whether a breach of UK Biobank's systems occurred or if data was obtained through another route. Initial findings suggest the records may have been de-identified before being listed, potentially lowering their immediate commercial value. This incident raises fresh concerns about data security in health research. While de-identification is intended to protect privacy, research has shown that genetic data can sometimes be re-identified through cross-referencing with public databases. The UK's Information Commissioner's Office is expected to investigate the matter. Alibaba removed the listings after being contacted by UK authorities. The company stated it has zero tolerance for illegal activities on its platform. No formal criminal investigation has been announced, though authorities are examining whether any laws were broken under UK data protection regulations.