The Pirkanmaa Welfare Region in Finland has reported a data breach in its password change service. Due to a technical error, users who logged in via the Suomi.fi authentication system on shared computers may have remained logged in for up to 32 minutes, even after logging out and receiving confirmation from the browser.
As a result, confidential information could have been exposed to others using the same device, particularly if the user did not clear browsing data or close the browser after changing their password.
The issue mainly affects employees, students, temporary workers, service providers, and decision-makers who used the “Passu” service on shared devices between June 11, 2024, and January 30, 2025. Approximately 3,500 people used the service during that time, and 2,000 of them can be contacted directly.
The error was fixed in February, and the incident has been reported to the Data Protection Ombudsman.
www.mtvuutiset.fi/artikkeli…