Educational Security Incidents (ESI)

Quick Facts

• Date: 4/28/2008
• Institution: University of Tokyo
• Type of Incident: Employee Fraud
• Number Affected: Unknown
• Source: ESI
• Abstract Source: Daily Yomiuri Online

Abstract
University of Tokyo officials moved to dismiss an associate professor after it was discovered this individual leaked graduate school entrance exam questions back in 2006. The former professor shared these questions with several students prior the exam date. It is not known how many students had advanced access to these questions, but it appears that some of the students that received the advance information are still attending the university.

Quick Facts

• Date: 4/25/2008
• Institution: University of Colorado, Boulder
• Type of Incident: Penetration
• Number Affected: None
• Source: Pogo Was Right
• Abstract Source: University of Colorado, Boulder News Center
• Update Source: University of Colorado, Boulder News Center

Abstract
The University of Colorado at Boulder has hired a security firm to help investigate the breach of three computers in the university's Division of Continuing Education and Professional Studies. So far, one of the computers was found to contain information on 9,000 students and 500 staff members. While the investigation is still on going the university believes that this computer contained data on individuals enrolled in Division of Continuing Education and Professional Studies courses between 1997 and 2003. UC-Boulder first became aware of the incident on April 24 when a malicious file was discovered on the computer. While there is no evidence that anyone gained access to personal information, the university plans on sending out notification letters to affected individuals by the end of next week. UC-Boulder has setup a web site - www.colorado.edu/itsecurity/contedu - with more information on the incident.

Update
The University of Colorado at Boulder announced today that the forensic analysis of the three computers that were suspected to have been compromised revealed that no personal information was affected during the incident. According to Dan Jones, Director of IT Security at CU-Boulder, university staff worked closely with Applied Trust Engineering and discovered that an interaction between two incompatible software programs that mimicked behavior consistent with malicious software.

Quick Facts

• Date: 4/23/2008
• Institution: Southern Connecticut State University
• Type of Incident: Unauthorized Disclosure
• Number Affected: 11,000
• Source: ESI
• Abstract Source: WTNH

Abstract
Souther Connecticut State University has alerted current and former students after a review of a university web site discovered a vulnerability that could have allowed an unauthorized individual access to personal information. During a recent review of a web server, the university discovered that unauthorized individuals could have had access to applications for graduation dating back to 2002. These applications contained the names, address and Social Security numbers of 11,000 current and former students. According to the web site setup by the university about the incident - www.southernct.edu/creditmonitoring - all affected individuals have been notified. The university has partnered with Debix Identity Protection Network to offer two years of free monitoring to the affected individuals.

Quick Facts

• Date: 4/23/2008
• Institution: University of Texas Health Science Center at Tyler
• Type of Incident: Unauthorized Disclosure
• Number Affected: 2,000
• Source: Attrition.org
• Abstract Source: Tyler Morning Telegraph

Abstract
The University of Texas Health Science Center at Tyler is apologizing to patients after a it discovered that medical bills sent out clearly displayed patient Social Security numbers. A technical problem at CBE Group Inc., a collections agency used by UTHSCT, caused Social Security numbers to be printed on roughly 2,000 billing envelopes. UTHSCT is not aware of exactly how many individuals were affected since multiple bills could have been sent to a single individual. While UTHSCT is confident the exposure was limited since the information was not circulating around in public areas, the hospital takes full responsibility for the incident. UTHSCT urges anyone affected by this incident to contact the hospitals billing office. According to UTHSCT COO Rob Marshall, "It was a small glitch that we absolutely own up to and want to be able to take care of anyone who has issue as a result."

Quick Facts

• Date: 4/22/2008
• Institution: University of Massachusetts, Amherst
• Type of Incident: Penetration
• Number Affected: Unknown
• Source: ESI
• Abstract Source: CBS 3, Springfield

Abstract
University of Massachusetts, Amherst officials are investigating the breach of a computer server in the university's University Health Services department. The breach by an unknown individual occurred April 11th. According to officials, most patient files are kept on paper, but some patient information was available on the server and the 150 computers in UHS. The university shutdown the UHS network and all UHS computers once the breach was discovered. According to a note on the main UHS web site - www.umass.edu/uhs - about 90 machines have been turned back on and the rest are expected to be operational within one week. Campus officials say it will be weeks before the university is able to determine what, if any, information was compromised but that the university is also looking at the security of all campus systems to help avoid future problems.