DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Follow-up: Anger follows University of Tampa data breach

Posted on March 22, 2012 by Dissent

Rob Shaw reports that some people are angry at U. Tampa’s decision not to offer free credit monitoring services to some of those whose data were available on the web for months:

In addition, the records of another 22,722 faculty, students and staff — from the years 2000 through 2011 — also were potentially accessible, though not through Google or any other search engine. University officials said last week that only two UT students saw that data.

The officials said Wednesday they were busy updating their data-breach information web page and didn’t have time to answer more questions. The web page, which doesn’t appear on the university’s home page or in its News section, says unequivocally that the larger group — and those who enrolled after July 12 — “are not at risk.”

 

Read more on Tampa Bay Online.

So based on their risk assessment, they did not offer that group of almost 23,000 free services. With predictable reactions. In an update to their breach notice page yesterday, the university attempts to reassure the larger group:

Is it possible for someone to have accessed the files without being traced on UT’s network logs?
Access to UT information systems is logged. IT has thoroughly examined the files and associated logs, and has a record of each individual access to the files. IT has secured the activity logs, and the University is currently evaluating a proposal to engage a third-party, qualified security assessor (QSA) to verify and further analyze the findings.

Maybe they’re right.  But would it cost more to offer the service if 10% enroll (the usual rate), or would it cost more to defend a lawsuit over the breach? Bean counters to Aisle 4, please. And how do we place a value on the bad feelings engendered? Will their response affect people recommending U. Tampa to potential students or faculty? Probably not, but we can’t really rule that out, either.  Breach handling is crucial and so far, U. Tampa is not getting high scores from at least some of those affected.

Related posts:

  • Penn State College of Engineering hacked; China suspected in at least one attack (updated)
  • Kept in the Dark — Meet the Hired Guns Who Make Sure School Cyberattacks Stay Hidden
  • Audits of New York schools and the State Education Department reveal ongoing significant concerns
  • New Math, data breaches version
Category: Education SectorU.S.

Post navigation

← Breach Leaves Thousands Of Kaiser Permanente Employees Checking Their Credit Report (update)
Pointer: Verizon DBIR 2012 →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France
  • France issues press statement about arrest of ShinyHunters members

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.