About ESI
Educational Security Incidents (ESI) serves as a repository for reported information security incidents that have occurred at institutions of higher education. The overall aim of ESI is to provide a single point of reference for educational faculty and staff researching the various threats that educational institutions currently face.
ESI is built off of research started during my (Adam Dodge) first semester in the Master of Science in Information Assurance (MSIA) program at Norwich University. The goal of this research was to find evidence of information security threats faced by colleges and universities. What I (Adam Dodge) discovered was shocking. As far back as the late 1990’s, educational institutions have been one of the most compromised industry sectors. Unfortunately, this trend continues today.
I (Adam Dodge) hope that by sharing my collected research though ESI this trend will change. Looking through the ESI’s collection of incidents it seems that the threat to educational information comes from many sources. From internal mistakes to external attacks, one thing is clear….
On college and university campuses, sometimes the free flow of information is unintentional.
Acknowledgements
ESI would not be possible if it were not for a handful of websites dedicated to the discussion and reporting of information security incidents. In no particular order, these sites are:
- The RISKS Forum, Dr. Peter G. Neumann, moderator
- INFOSEC Year In Review, Dr. M. E. Kabay, et al.
- A Chronology of Data Breaches Reported Since the ChoicePoint Incident, Privacy Rights Clearinghouse
- Errata:Data Loss, Attrition.org
- Emergent Chaos, Adam Shostack, et al.
- InfoSec News, William Knowles, moderator
- Edupage, EDUCAUSE
- Security News Portal. Marq
