Tu-Uyen Tran reports that an audit conducted in the wake of NDUS’s breach earlier this year found major problems that went far beyond the few employees who were eventually fired: An email a stranger sent to the North Dakota University System’s computer security officer on the morning of Feb. 7 was the first sign that…
Category: Education Sector
Shorter University responds to theft of records of former student athletes
This item is from late September. Jeremy Stewart reported: Shorter University is reviewing security protocol after a group of files containing students’ personal information was removed from a campus building. A letter obtained by the Rome News-Tribune was sent out to former student-athletes by Shorter Vice President for Finance and CFO Susan Zeird urging them to…
Attackers go back to school: phishing from .edu leads to ZeuS
Ronnie Tokazowski reports: On October 28th, several of our employees reported a wave of suspicious emails. The most peculiar of the bunch originated from an American university. Analyzing the email headers revealed some interesting information: the attackers sent the phishing email from within a compromised .edu domain. Read more and see the screencaps on PhishMe. They do…
SD: Meade School District dealing with information breach
Deb Holland reports: Meade School District staff hope they have corrected an internal computer error that made hundreds and maybe thousands of Social Security numbers of former students available online last week. Meade Superintendent Don Kirkegaard said Saturday the computer breach came to his attention late Thursday. “Somehow, access to our transcript server was compromised,”…
Update: Tutor in Corona del Mar High grade-hacking scandal arrested at LAX
There’s a follow-up to a breach previously noted on this blog. On October 6, Sean Emery reported: A tutor at the center of an alleged grade-changing scandal at Corona del Mar High School was arrested Monday when police say he returned to Southern California after fleeing the country. Timothy Lance Lai, 29, was taken into…
Update on Lewisburg Area School District breach
An update to this breach post. PA HomePage reports: The district has confirmed that student names, school district ID numbers, addresses, phone numbers, dates of birth, and social security numbers from the school’s food service account were accessed through the school’s network. Read more on PA HomePage. In partial response, the district has stopped including…