Educational Security Incidents (ESI)

Quick Facts

• Date: 12/20/2008
• Institution: Lorain County Community College
• Type of Incident: Penetration
• Number Affected: 22,000
• Source: Pogo Was Right
• Abstract Source: The Chronicle-Telegram

Abstract
Lorain County Community College announced that a sophisticated computer hacker breached two servers and could possibly have gained access to staff, students and community members personal information. The breach, which occurred during Thanksgiving break, involved the library card system which contained the names and Social Security numbers of about 22,000 staff, students and community members. LCCC staff discovered the breach when a virus alert went off due to an unknown individual download applications to the server. Staff immediately removed the server from the network to mitigate the breach until it could be investigated. According to LCCC VP of Strategic and Institutional Development Marcia Ballinger, the unknown individual was most likely looking to pirate space available on the servers and was not after personal information. However, LCCC will begin notifying all affected individuals and instructing them how to sign up for credit monitoring with Equifax. LCCC has enlisted the help and support of the FBI and other computer forensic experts in the investigation of the breach.

Quick Facts

• Date: 12/20/2008
• Institution: University of North Carolina School of the Arts
• Type of Incident: Penetration
• Number Affected: 2,700
• Source: Pogo Was Right
• Abstract Source: Winston-Salem Journal

Abstract
The University of North Carolina School of the Arts is working to notify current and former students about a computer breach that may have exposed personal information. The server, which went on line in 2003, contained the names and Social Security numbers of about 2,700 students enrolled between 2003 and 2006. The breach occurred in May 2006 and, according to officials, the school became aware of the breach last week. UNCSA staff is working to investigate the breach and are conducting tests to ensure the future safety of personal information.

Quick Facts

• Date: 12/15/2008
• Institution: University of North Carolina at Greensboro
• Type of Incident: Penetration
• Number Affected: Unknown
• Source: ESI
• Abstract Source: UNC Greensboro News Release

Abstract
The University of North Carolina at Greensboro is working to alert current and former employees after a detected a security breach on a workstation containing payroll information. The workstation contained the names, Social Security numbers, bank routing information and bank account numbers on an unknown number of individuals. The incident affects anyone that has received a payment from UNCG since April of this year. The breach was discovered after a payroll employee received a virus alert while trying to open a file on the computer. An investigation into the alert uncovered a virus had been on the computer for eight months which could have allowed unauthorized access to the workstation. UNCG has created a web site - fsv.uncg.edu/incident - with more information on the incident.

Quick Facts

• Date: 11/13/2008
• Institution: University of Maine
• Type of Incident: Penetration
• Number Affected: 200
• Source: ESI
• Abstract Source: WCSH6, Bangor Daily News

Abstract
The University of Maine announced the arrest of a former student charged with illegally accessing hundreds of student email accounts. Following a three week investigation by the University of Maine campus police, the Maine State Police Computer Crimes Task Force and the United States Secrete Service charged former UMaine business student James Wieland with one count of aggravated criminal invasion of computer privacy. The university believes that Wieland is responsible for distributing a downloadable game through email that contained a trojan key logging program. Wieland allegedly sent the email to over 1,000 student email address and had gained access to over 200 accounts as a result. The university became aware of the incident after two students received emails from each other while riding on an airplane together. It is not known why Wieland wanted access to these accounts.

Quick Facts

• Date: 11/12/2008
• Institution: University of Florida
• Type of Incident: Penetration
• Number Affected: 336,234
• Source: ESI
• Abstract Source: Network World

Abstract
The University of Florida announced that a server containing College of Dentistry patient information was breached by an unknown individual(s). The server contained the names, addresses, birth dates, Social Security numbers of 344,482 patients dating back to 1990. Some of these records did contain dental procedure information. UF discovered the breach on Oct 3rd when staff were performing upgrades on the server. Staff found that an unknown individual(s) had compromised the computer and remotely installed additional software on the server. The server was immediately taken down until staff could strengthen the security controls of the system. UF has mailed out notifications to 336,234 individuals affected by this breach. In the online FAQ, the University of Florida states that the university will not offer any free credit monitoring to the individuals affected by this breach. The university has more information on the incident here - privacy.ufl.edu.