September 2009

Memorial University of Newfoundland Recycling Project Exposes Student Information

Submitted by Adam Dodge on Tue, 2009-09-29 13:41

Quick Facts

Abstract
Memorial University of Newfoundland is in the process of notifying students after recycled paper used on campus was found to contain personal information. The papers in question, recycled as part of a MUN project to reuse paper, contained a portion of loan applications including names, addresses and social insurance numbers. The paper was traced to a fax machine student union that many students use. While most offices screen the paper sent to the project, this incident has caused MUN officials to shut down the recycling project.

[Update1]Server Containing UNC-Chapel Hill Study Breached

Submitted by Adam Dodge on Thu, 2009-09-24 18:20

Quick Facts

Abstract
The University of North Carolina at Chapel Hill is working to notify thousands of women after a breach of a server containing a medical study was discovered. The server, one of two involved in a 14-year project analyzing mammography results, contained data on 236,000 women including 163,000 Social Security numbers. The breach was detected in July and UNC-Chapel Hill officials hired an outside forensic firm to help investigate the breach. After two months, the University still does not know who is responsible for the breach of if the data on the server was downloaded. According to the chairman of the UNC-CH Department of Radiology Matthew Mauro, the breach have been as much as two years old. The breach has caused the UNC-CH Medial School to reevaluate all computer security measure. The University held off notification letters until the investigation was completed and will soon begin notifying all those affected.

Update1
The recent security breach at UNC-CH was less severe then first thought. According to officials, the files accessed contained information on 160,000 women including 114,000 Social Security numbers. The University has setup a hotline - 877-434-3065 - to help answer questions about the breach and the investigation.

EKU Social Security Numbers Online For A Year

Submitted by Adam Dodge on Thu, 2009-09-24 18:08

Quick Facts

Abstract
Eastern Kentucky University recently notified faculty, staff and student workers after a file containing Social Security Numbers was found online. The file, accidentally placed online in September 2008, contained the names and Social Security Numbers of 5,045 individuals on the EKU payroll in 2007-2008. According to EKU President Doug Withlock, the file could only be found by accessing the exact file name or by those that conducted a precise Google search. EKU has setup a web site - www.ecert.eku.edu - and a hotline - 859-622-7777 - to help answer questions about the incident.

Security Breach at University of Florida

Submitted by Adam Dodge on Mon, 2009-09-14 05:43

Quick Facts

Abstract
The University of Florida announced a recently discovered security breach of personal information. The breach involved a file containing the 34 names and 25 Social Security numbers of trainers working with the Florida Traffic and Bicycle Safety Education program in 2006. The file the unsecured file was removed as soon as it was discovered by university techs during a routine security check. While the file was last modified in 2006, the university believes that the risk to personal information is low. The university has setup a web site - privacy.ufl.edu/ - and hotline - 877-657-9133 - to help answer questions about the incident.

University of Vermont Announces Credit Card Breach

Submitted by Adam Dodge on Wed, 2009-09-02 06:03

Quick Facts

Abstract
The University of Vermont recently announced that a number of university credit cards have been compromised. According to the university, up to 242 university-funded credit cards have been used for fraudulent activities. The university was notified of the compromise by the issuing bank. At this point, the university is not certain how the credit cards became compromised.