Rob Pattinson reports: A (sic) investigation has been launched after personal details of nearly 800 Edge Hill University students were sent out in an email. The email, sent by a university staff member to 53 students, mistakenly contained 798 other students’ addresses, email addresses, course enrolment details and student network passwords. The university told the…
Category: Education Sector
SAISD website exposes students’ personal info (updated)
Lindsay Kastner reports: Confidential information about dozens of San Antonio Independent School District students was exposed on the Internet, apparently for months, and officials were scrambling Friday to repair the security breach. A Google search by a San Antonio Express-News reader who was checking out an unfamiliar phone number brought up the district’s “Potential Dropout…
MI: Hackers hit Troy schools
Mike Martindale reports: Police and Troy school officials are investigating a widespread hacking of the school district’s computer system. In a letter to parents obtained by The Detroit News, schools Superintendent Barbara Fowler said she told students and staff with accounts on the system to change their passwords so whoever’s responsible can’t access personal information….
UGA personnel data posted on web site (Updated)
Laura Diamond reports: University of Georgia officials are investigating how personal data on nearly 19,000 employees was publicly available on a university web site since at least 2008. […] The database was created for internal purposes and included the Social Security number, date of birth, employee name and other sensitive information for everyone who was…
Some days, I pull my hair out, Thursday edition
Everywhere I look, there are data breaches that I would want to include in DataLossDB.org’s database. But as I backfill the database to include incidents reported on my blogs that were never in the database, my research stumbles over tons of other breaches that should also be included. Rather than getting closer and closer to…
UK: Two laptop theft incidents result in undertakings
Two organisations have taken action after they breached the Data Protection Act by failing to encrypt personal information on laptops that were later stolen, the Information Commissioner’s Office (ICO) said today. The Association of School and College Leaders (ASCL) breached the Data Protection Act in May 2011 when a laptop – containing sensitive personal data – was…