Quick Facts

• Date: 9/2/2010
• Institution: University of Virginia College at Wise
• Type of Incident: Penetration
• Number Affected: N/A
• Source: DataBreaches.net
• Abstract Source: Krebs On Security

Abstract
Well known computer security journalist Brian Krebs has learned that computer criminals have stolen almost $1,000,000 from the University of Virginia College at Wise last week. It appears that the thieves used a virus to steal the online banking credentials from the comptrollers computer. The thieves used this access to transfer $996,000 from the university's accounts at BB&T Bank to the Agricultural Bank of China. When contacted by Krebs, Kathy Still, UVA Wise Director of News and Media Relations, would only state that the school was investigating the incident and no student data was at risk.

Quick Facts

• Date: 9/2/2010
• Institution: Arkansas State University
• Type of Incident: Unauthorized Disclosure
• Number Affected: 2,484
• Source: ESI
• Abstract Source: The Herald

Abstract
Arkansas State University is working to provide identity theft protection for faculty and staff after an email attachment containing personal information was accidentally sent out. The email attachment, sent to 144 university email addresses, contained the names, driver's license numbers and Social Security numbers on 2,484 full-time and part-time faculty and staff. University officials engaged Experian to provide 12 months of identity theft protection for those affected. The university's IT department was notified about the email shortly after it was sent out and had removed the messages from the system within 90 minutes. University officials are currently examining how to prevent similar situations in the future.

Quick Facts

• Date: 9/1/2010
• Institution: University of Florida
• Type of Incident: Theft
• Number Affected: 8,300
• Source: ESI
• Abstract Source: My Fox Orlando, University of Florida

Abstract
The University of Florida is working to notify individuals after the theft of a laptop that belonged to a program affiliated with the university. The laptop contained the names, Social Security numbers and some Florida driver's license numbers on 8,300 P.K. Yonge students and employees dating back to 2000. The laptop was stolen on July 23 from a P.K. Yonge Development Research School employee's rental car while in San Francisco. The theft was originally reported to the California police and later reported to the University of Florida Police Department. P.K. Yonge staff are taking steps to prevent similar problems in the future by installing encryption software on laptops. In the letter to those affected, university officials recommend they monitor their credit reports for signs of identity theft. The University of Florida has setup a web site - privacy.ufl.edu/incidents/2010/pkyonge - with more information on the incident.

Quick Facts

• Date: 8/28/2010
• Institution: University of Auckland
• Type of Incident: Penetration
• Number Affected: Unknwon
• Source: ESI
• Abstract Source: The New Zealand Herald

Abstract
The University of Auckland recently notified students after the breach of a server containing personal information. The server, which was a stand alone system, contained student names, dates of birth and contact details. According to university officials the system did not contain any financial information. The university hired a computer security firm to help investigate the breach and thus far no evidence that the personal information was accessed has been found. However, the university is urging students to monitor their identities as a precaution.

Quick Facts

• Date: 8/21/2010
• Institution: Delhi University
• Type of Incident: Unauthorized Disclosure
• Number Affected: Unknown
• Source: ESI
• Abstract Source: Hindustan Times

Abstract
Kirti Dargan, a Moti Lal Nehru college student, recently discovered her personal information online while searching Google for her name. The information found online included her name, email address, residential address and phone number. Kirti had given this information to Delhi University when she volunteered for The Commonwealth Games in May. According to the unnamed director of the volunteer program, the information was placed online when they were contacting the volunteers for interviews but that it should have been removed before now.