SLC Security reports that they are seeing indicators that this entity has been breached for over a month and does not realize it. It appears as though their infrastructure is being used to launch farther attacks on other educational institutions. They also appear on Emerging Threats for malicious activity since at lease the 11th of…
Category: Education Sector
Tweets that give me a knot in my stomach, Monday edition
32 edu sites all vuln to the same sql injection vuln….. this is going to be fun — abdilo (@abdilo_) February 2, 2015 and .@jessysaurusrex@g33kspeed@sambowne to put your mind at ease here is the amount in all the dbs together from the 0day sqli: 9,468,248 — abdilo (@abdilo_) February 2, 2015 If/when he posts a…
CA: Victor Valley College hit by computer security breach; entire IT dept. put on paid leave
This is an odd one. Brook Self reports: The entire Victor Valley College Information Technology Department has been placed on paid administrative leave while campus police and an outside company investigate a breach in security protocol, President Roger Wagner said Thursday. While emphasizing that no private student or employee information had been compromised, Wagner said…
Palatine Police Charge Fremd Student For Allegedly Sending Offensive Email
From the no-surprise-there-dept.: An 18-year-old Fremd High School senior from Schaumburg was charged by Palatine police today (Friday) with misdemeanor disorderly conduct for sending an offensive email. According to police, on Tuesday, Jan. 27, an email message containing an offensive image was sent to student email accounts at both Fremd and Palatine high schools. Police…
IL: Fremd and Palatine high schools are investigating an obscene and sexually explicit photo sent to nearly all of their students
ABC reports: Palatine police are investigating a sexually explicit and obscene email sent Tuesday night to almost all of the 5,400 students at William Fremd High School and Palatine High School in Palatine, Ill. The email was sent using the internal student email system. Read more on ABC.
U. Chicago hacked by Carbonic – claim (Updated)
It appears we should add the University of Chicago to schools hacked by Carbonic. And yes, chalk it up to another SQLi vulnerability. In a statement to DataBreaches.net, @MarxistAttorney reported that they got payroll information, employee IDs and a “substantial amount of information they didn’t publicize.” A copy of the url vulnerable to SQLi exploit was…