London Marathon website goof leaks 38,000 contact details

The home addresses and personal email details of some 38,000 participants in Sunday’s London Marathon were exposed for anyone to access on the race’s official website, according to a BBC News report.

According to reports, the private information was free for anyone to access in the section of the website which allowed runners to order commemorative medals.

Celebrities who took part in the race – and whose personal details were presumably available for anyone to access – include celebrity chef Gordon Ramsay, Shadow chancellor Ed Balls, pop singer Will Young, newsreader Sophie Raworth, and stars of TV shows such as Coronation Street and The Only Way is Essex.

A member of the public stumbled across the problem, who then contacted the BBC. The BBC appears to have acted responsibly, informing the London Marathon organiser’s about the problem on Monday…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.

Graham Cluley •   @gcluley

Graham Cluley is a veteran of the cybersecurity industry, having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent analyst, he regularly makes media appearances and is an international public speaker on the topic of cybersecurity, hackers, and online privacy. Follow him on Twitter, Mastodon, Bluesky, or drop him an email.