InfoSec news
Purdue Notifies Alumni of Computer Breach
Quick Facts
- Date: 09/22/2006
- Institution: Purdue University
- Type of Incident: Penetration
- Number Affected: 2,500
- Source: InfoSec News
- Abstract Source: FortWayne.com
Abstract
Purdue University notified individuals who attend the university in 2000 about a recently discover security breach. 2,500 alumni were told that their personal information, including Social Security numbers and names, may have been accessed by an unauthorized individual. Purdue officials discovered that a workstation in the chemistry department might have been accessed by an unauthorized individual who installed remote access software on the computer. This computer was found to contain a Feb 2000 files that contained former student information.
Rogue WiFi APs Put Data At Risk
Quick Facts
- Date: 8/25/2006
- Institution: University of Iowa
- Type of Incident: Unauthorized Disclosure
- Number Affected: Unknown
- Source: InfoSec News
- Abstract Source: The Des Moines Register
Abstract
A recent audit of wireless connectivity at the University of Iowa uncovered 80 rouge access points (APs) throughout nine academic buildings. Over half of these APs had no encryption or security features enabled, leaving both the U of I network and student information vulnerable to attack. It is believed that impatience caused faculty and staff installed these wireless access points. Current wireless access only covers about 15% of the U of I campus. The University of Iowa is currently working on pinpointing these rouge access points and converting these APs either to authorized access points (with security features enabled) or back to wired connections. U of I is also working towards expanding its overall wireless coverage.
FIU Student Records Compromised By Hacker
Quick Facts
- Date: 5/31/2006
- Institution: Florida International University
- Type of Incident: Penetration
- Number Affected: Unknown
- Source: InfoSec News
- Abstract Source: CBS4, Miami, FL
Abstract
Florida International University sent out notice "postcards" to students alerting the students to a computer breach that occurred two months ago. According to the University a hacker was able to compromise a database containing the names and Social Security numbers of FIU students and applicants. FIU officials have yet to comment about the delay in notification, which has caused worry among the affected students.
OU's Hudson Health Center Suffers Computer System Breach
Quick Facts
- Date: 5/12/2006
- Institution: Ohio University
- Type of Incident: Penetration
- Number Affected: 60,000
- Source: InfoSec News
- Abstract Source: Ohio.com
Abstract
For the third time in as many weeks, Ohio University discovered another breach in its computer systems. This time the computer was part of Ohio University's Hudson Health Center. The names, dates of birth, Social Security numbers and medical information on 60,000 current and former students as well as any faulty or staff who sought treatment at the health center were exposed. Ohio University has launched a complete review of all information systems owned by the university.
San Diego Man Charged with Accessing University Applicants' Information
Quick Facts
- Date: 4/21/2006
- Institution: University of Southern California
- Type of Incident: Penetration
- Number Affected: 275,000
- Source: InfoSec News
- Abstract Source: North County Times
Abstract
Eric McCarty, 25-year-old from San Diego, is charged with breaking into the online application system of the University of Southern California. This system contains the Social Security numbers and dates of birth of over 275,000 prospective students that applied to USC between 1997-present. McCarty, who works as a penetration tester and network administrator, allegedly exploited a vulnerability in the application system's database to gain access.
