UK Biobank Chief Addresses Data Breach: 'Few Bad Apples' Behind Incident

Fri Apr 24 2026 13:14:01 GMT+0000 (Coordinated Universal Time)

Professor Sir Rory Collins, head of UK Biobank, expresses anger and concern over a data breach that saw sensitive medical information listed for sale online. As the organization suspends access to its platform, scrutiny intensifies over data security protocols.

In a recent incident, UK Biobank's medical data from half a million participants was found for sale online, prompting an immediate response from management. Professor Sir Rory Collins has attributed the breach to 'a few bad apples' within the organization, stating the listings were promptly removed thanks to collaboration between the UK and Chinese governments. As investigations unfold, Biobank has suspended access to its research platform to implement stronger safeguards against future incidents.

The boss of UK Biobank, Professor Sir Rory Collins, has revealed that a breach involving the medical data of 500,000 participants was caused by 'a few bad apples' within the organization.

Last week, datasets containing de-identified information about volunteers were found listed for sale on a Chinese website, Alibaba. The UK government quickly intervened, stating the listings were removed before any data could be sold.

In an interview, Sir Rory expressed his anger and concern over the incident, emphasizing the significant impact on the Biobank's credibility and its mission. He noted that the institutions involved have since been banned from its online platform.

As a direct response, Biobank has temporarily halted access to its research platform to conduct a comprehensive investigation and implement improved security measures to prevent future occurrences.

Biobank provides invaluable health data for research contributing to advances in the detection and treatment of diseases like dementia and cancer. Researchers worldwide access the de-identified medical information, and there's a continuous effort to balance data availability with stringent security.

Furthermore, Technology Minister Ian Murray clarified that while the data in question did not contain identifiable information such as names or addresses, it involved sensitive details like gender, age, and biological sample measurements.

Sir Rory acknowledged the need for improved safeguards while affirming the importance of making significant health data available for scientific discoveries.