DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

(update) OSU searches for possible hacking victims

Posted on February 22, 2011 by Dissent

Remember back in December when Ohio State University announced that it had detected a breach at the end of October and would be notifying 760,000 people who had personally identifiable information on the server? It seems that they are still trying to notify some of them.

Encarnacion Pyle reports in The Columbus Dispatch:

A hacker hasn’t hit another computer server at Ohio State University. But the school has sent 226,000 letters, mostly to alumni, in the past couple of weeks about free credit-monitoring services.

Ohio State uncovered a breach in late October and began notifying people whose data might be at risk. The original list of 760,000 students, professors and others who do business with Ohio State contained some outdated addresses, officials said yesterday. So the university recently has sent out new letters to what officials hope are their current addresses.

“Let me tell you, it’s hard to find 760,000 people,” said Jim Lynch, OSU’s spokesman.

Well yes, I imagine it would be. Which seems to be yet another excellent reason not to keep so much non-current data on a server connected to the Internet. By now, it’s somewhat discouraging that some entities still don’t seem to have learned that lesson. Maybe there should be a penalty surcharge for breaches involving data that are past their freshness date but were left connected to the Internet.

Category: Breach IncidentsEducation SectorHackU.S.

Post navigation

← Emory Healthcare patient records used in tax refund fraud scheme (updated)
HHS Imposes a $4.3 Million Civil Money Penalty for Violations of the HIPAA Privacy Rule (updated) →

1 thought on “(update) OSU searches for possible hacking victims”

  1. Golde says:
    February 22, 2011 at 1:52 pm

    Yet another argument for a national mandatory data breach list that would be available to the public. It should include letter of notification so that those who have moved could look it up themselves. Media notification is the standard now but what if they moved out of Ohio? We live in a mobile society with one statistic stating that 17% of the nation moves annually. Change of address every 6 years – not too unreasonable to believe especially when people must move to find work.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Runsafe report: Medical device cyberattacks threaten patient care, strain budgets, top concern for healthcare sector
  • Ryuk ransomware’s initial access expert extradited to the U.S. from Ukraine
  • Alleged Geisinger hacker will defend himself pro se.
  • Tallahassee Memorial Healthcare reveals it was also impacted by Cerner/Legacy Oracle cyberattack
  • Hospital cyberattack investigation complete, no formal review needed
  • Largest Ever Seizure of Funds Related to Crypto Confidence Scams
  • IMPACT: 170 patients harmed as a result of Qilin’s ransomware attack on NHS vendor Synnovis
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • UBS reports data leak after cyber attack on provider, client data unaffected
  • Scania confirms insurance claim data breach in extortion attempt

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data
  • DOJ Seeks More Time on Tower Dumps
  • Your household smart products must respect your privacy – including your air fryer
  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.