As a follow-up to a breach originally covered here in November, KPTV now reports:
A former student was behind a data security breach that compromised the personal information of more than 5,000 current and former Vancouver School District workers, officials said Thursday.
Christopher Berge, who attended Evergreen Public Schools, pleaded guilty to 30 different counts related to the November incident, said district superintendent Steven Webb in an e-mail to staff members.
Webb said Berge “shoulder surfed” a password from an Evergreen employee while he was still a student. The password allowed him into Evergreen’s student records system and, later, the Vancouver district’s payroll system through the Washington School Information Processing Cooperative, according to the district.
Read more on Fox12 Oregon.
In other coverage on the incident, Howard Buck reports that Berge was sentenced to 10 years. The data he accessed included:
personal information, such as names, dates of birth, Social Security numbers and other banking information for the 3,300-plus current Vancouver school workers, plus another 1,900 past employees.