University of Georgia
Breached UGA Server Contains Social Security Numbers
Quick Facts
- Date: 1/9/2008
- Institution: University of Georgia
- Type of Incident: Penetration
- Number Affected: 4,250
- Source: Pogo Was Right
- Abstract Source: Red and Black
Abstract
The University of Georgia is investing a sever breach that appears to have occurred between Dec 29 and Dec 31. At this point it appears the attach originated overseas. The breached server contained the Social Security numbers, names, and addresses for 4,250 prospective, current and former residents of graduate family housing. The breach was discovered by a department working over the break when this individual noticed "a page showing something that shouldn't be there." UGA worked quickly to notify the affected individuals through e-mail and postal mail.
Lack of Patching Leads to University of Georgia Database Breach
Quick Facts
- Date: 2/12/2007
- Institution: University of Georgia
- Type of Incident: Penetration
- Number Affected: 3,500
- Source: ESI
- Abstract Source: Red and Black
Abstract
University of Georgia officials announced that last week overseas individuals were able to breach a university database. The database belonged to the university's Disability Resource Center and contained 3,5000 student Social Security number as well as information on client disabilities. UGA officials do not believe that these attackers were after the information itself, but instead simply attacking because they were able to. A review of the incident uncovered that the attackers were able to gain access to the database because the university failed to apply all of the available security patches. The university is still reviewing whether or not the use of Social Security numbers at the Disability Resource Center is necessary.
1,600 Employees Exposed to ID Theft At The University of Georgia
Quick Facts
- Date: 9/29/2005
- Institution: University of Georgia
- Type of Incident: Penetration
- Number Affected: 1,600
- Source: EDUPAGE via INFOSEC Year In Review
- Abstract Source: AJC Metro
Abstract
The University of Georgia has revealed that a hacker was able to access a computer system that contained personal information for employees of the College of Agricultural and Environmental Sciences as well as people who are paid from that department. Social Security numbers were in the accessed database, though no credit card information was exposed. In all, 2,400 Social Security numbers for about 1,600 people were compromised, and the university is working to contact those affected. According to Tom Jackson, spokesperson for the university, names and Social Security numbers in the database were not connected, but an experienced hacker would likely be able to correctly match them up. The university suffered another computer hack in January 2004. No arrests have been made in that incident. The Atlanta Journal-Constitution, 29 September 2005
[Abstract taken directly from INFOSEC Year In Review]
