Earlier this month, Rick Dean reported: Kansas State University officials say an internal error may have exposed on the Internet personal information from candidates seeking admission to the school’s graduate program in agronomy. In a news release Wednesday, school officials said 19 persons who had applied for admission to graduate programs between 2010 and 2013…
Category: Education Sector
Omaha Burke apologizes for information leak
Jeremy Maskel reports: Omaha Burke High School Principal Dr. Deborah Frison apologized in an email to families Wednesday, after an earlier email included an attachment with more than 2,000 students’ home addresses, phone numbers and student ID numbers. The email did not include any Social Security numbers. Read more on KETV. h/t, @VERISDB
FL: Tax refund fraud scheme involved two insiders misusing databases
WTXL reports that five people have been indicted in a tax refund fraud scheme that included two employees misusing their access to databases. One of those indicted, Katrina Pratt, had been an administrative assistant in human resources at Florida A & M University (FAMU), and allegedly used the identities of 40 students there as part…
Student Freya Newman pleads guilty to hacking Frances Abbott design scholarship files
There’s an update to this incident. Nicola Berkovic reports that Freya Newman pleaded guilty. She faces up to two years in jail when she’s sentenced next month.
GA: Woman buys file cabinet, finds students’ private records
Kerry Kavanaugh reports: A Henry County woman is outraged after she purchased a used filing cabinet and found students’ personal information inside. The files had the Brandon Hall School logo and so much more. Elizabeth Darsey found them in a used filing cabinet she purchased at a used furniture warehouse. “Disciplinary actions, legal actions, lawsuits,…
George Mason University notifies 4,400 of malware intrusion
George Mason University recently notified 4,400 people that personal information stored in a Travel Request Applications database could have been accessed due to a malware intrusion. Forensic examination of the server did not find any evidence of access to the data or exfiltration, but could not conclusively rule out the possibility. The intrusion was discovered…