John Templon reports: Like many institutions, the Office of Data and Accountability for Washington D.C.’s public schools uses an “intranet” for sharing confidential documents. Unlike most intranets, theirs was unintentionally public. […] Hundreds of documents were hosted on the intranet, some providing an unfiltered look into the inner workings of the city’s public school system,…
Category: Education Sector
And then I stumbled across these hacks by Zyklon
Seen on Pastebin, dated January 15: Hacked By Zyklon #Wonkasec WonkaSec Temp Homepage: http://trippletoaster.freeiz.com/Index%285%29.html Twitter: http://twitter.com/zyclonb4u Website Hacked: http://soviethistory.macalester.edu Very small portion of the accounts, the other 90,000+ will be posted here: http://trippletoaster.freeiz.com/DbDump.php The accounts with .edu emails are most likely professors, if you are in college…
U. of Chicago still compromised, data for sale on underground – researchers (updated)
On January 24, this blog reported that Carbonic had claimed to have hacked the University of Chicago. The U. of Chicago never responded to a notification and inquiry this blog sent via e-mail on January 22nd. Yesterday, SLC Security reported that the university is still leaking information and is still vulnerable: During a recent receive (sic)…
Yoohoo, Texas A&M: wake up!
SLC Security reports that they are seeing indicators that this entity has been breached for over a month and does not realize it. It appears as though their infrastructure is being used to launch farther attacks on other educational institutions. They also appear on Emerging Threats for malicious activity since at lease the 11th of…
Tweets that give me a knot in my stomach, Monday edition
32 edu sites all vuln to the same sql injection vuln….. this is going to be fun — abdilo (@abdilo_) February 2, 2015 and .@jessysaurusrex@g33kspeed@sambowne to put your mind at ease here is the amount in all the dbs together from the 0day sqli: 9,468,248 — abdilo (@abdilo_) February 2, 2015 If/when he posts a…
CA: Victor Valley College hit by computer security breach; entire IT dept. put on paid leave
This is an odd one. Brook Self reports: The entire Victor Valley College Information Technology Department has been placed on paid administrative leave while campus police and an outside company investigate a breach in security protocol, President Roger Wagner said Thursday. While emphasizing that no private student or employee information had been compromised, Wagner said…