Month of February, 2006
University Warns of Possible ID Theft After W-2 Information Exposed
Quick Facts
- Date: 2/18/2006
- Institution: University of Northern Iowa
- Type of Incident: Penetration
- Number Affected: 6,000
- Source: Privacy Rights Clearinghouse
- Abstract Source: < a href="http://www.wcfcourier.com/articles/2006/02/18/news/breaking_news/doc43f7026269046987392075.html">WCF Courier
Abstract
A computer breach at the University of Northern Iowa prompted UNI to notify 6,000 student employees and faulty that their W-2 tax forms might have been exposed. UNI issued immediate warnings for these individuals to "monitor their bank accounts" following the security breach.
Mass E-mail Exposes Student Socal Security Numbers
Quick Facts
- Date: 2/15/2006
- Institution: Old Dominion University
- Type of Incident: Unauthorized disclosure
- Number Affected: 601
- Source: Privacy Rights Clearinghouse
- Abstract Source: Privacy Rights Clearinghouse Chronology of Data Breaches
Abstract
A professor accendentailly exposed the names and Social Security numbers of 601 Old Dominion University students when a class roster was posted on the class website.
Abstract by Privacy Rights Clearinghouse Editors
Men Charged in Botnet Scheme
Quick Facts
- Date: 2/13/2006
- Institution: California State University - Northridge, University of Michigan, University of California - Los Angeles
- Type of Incident: DDoS attacks
- Number Affected: Unknown
- Source: EDUPAGE
- Abstract Source: Edupage
Abstract
Three men have been charged by federal authorities in a botnet scheme that reportedly netted the three $100,000 and caused $150,000 in damage. According to the indictment, Christopher Maxwell and two unnamed conspirators created a network of computers by illegally accessing networks at California State University at Northridge, the University of Michigan, and the University of California at Los Angeles. Using the network of zombie machines, the men installed adware on users' computers and also launched a denial-of-service attack on the network of Seattle's Northwest Hospital. The attack on the hospital resulted in the monetary damages cited in the indictment and also shut down the facility's intensive care unit. U.S. Attorney John McKay noted that although botnets are often seen as mere nuisances, this case shows that the repercussions from them can be deadly. If convicted, Maxwell could serve 10 years in prison and be fined $250,000.
(CNET, 13 February 2006)
Abstract by EDUPAGE editors
Employee Data At Risk After USSC Comptuer Breach
Quick Facts
- Date: 02/01/2006
- Institution: University of Colorado, Silver Springs
- Type of Incident: Penetration
- Number Affected: 2,500
- Source: Attrition.org
- Abstract Source: The Gazette
Abstract
University of Colorado at Silver Springs announced it uncovered a recent computer breach in the Personnel Department. The unknown intruder gained access to one of seven Personnel Department computers containing the names, Social Security numbers, dates of birth and addresses on 2,500 employees dating back to 2004. There is no evidence that the goal of the attack was to gain this information. However, USSC urges all affected employees to alert credit agencies and monitor their credit reports.
