There’s been another breach in the education sector, this one involving Franklin & Marshall College in Lancaster, PA. On March 19, F&M was notified that two Excel sheets with 356 students’ full names and Social Security numbers was exposed on the public portion of their eDisk network. The files were promptly removed. An investigation revealed…
Category: Education Sector
University of California – Riverside notifying 8,000 whose SSNs were on stolen desktop
Mark Muckenfuss reports UC Riverside officials are notifying 8,000 graduate students and graduate applicants that their personal identity information is at risk. A desk-top computer stolen during a break-in at the campus’ graduate division offices March 13, contained the Social Security numbers of the students and potential students. Officials said they had no evidence that…
Wellesley College data dumped; server vulnerable to SQLi
So yesterday, TeaMp0isoN’s timeline looked like this (click on image to enlarge): Then this happened: Creds to @_TeaMp0isoN_ For Vulnerability Alert. Login Drop. [url redacted by DataBreaches.net] — Chief (@Puttied) April 5, 2015 The data dump was prefaced with this message: DB Drop BY Chief(@Puttied). Site : http://mobius.wellesley.edu/ This is their latest Login DB as…
Horrific privacy breach by Tewksbury Public Schools
Cross-posted from PogoWasRight.org. Okay, this is really bad, on multiple levels. Brendan Foley and Jayne Miller report: Tewksbury Public Schools face angry parental backlash following the release of private student information online last week. A document included in a 222-page School Committee packet remained online for the better part of a week, before being taken…
MI: Monroe High School student hacker disrupts school district Internet
Ray Kisonas reports: A Monroe High School student is facing possible felony criminal charges after the district’s computer system was hacked and its Internet service disrupted several times over the past two weeks. The alleged cyber-hacker, a senior, has been removed from school and faces disciplinary action in addition to legal troubles. Monroe Public Schools…
Auburn University notifying over 360,000 current and former students of breach
Oops. Auburn University discovered that students’ personal information – names, postal and email addresses, dates of birth, Social Security numbers, and students’ academic information – was exposed on the Internet between September 1, 2014 and March 2, 2015 when they discovered the problem. No financial information, bank account or payment card information was involved. While the university…