Another hack by #AntiSec, this time the New Jersey-based Stevens Institute of Technology. 31 first and last names, usernames, passwords (plaintext!) and email addresses exposed on Pastebinon July 7. And in many cases, the passwords are identical to the simple usernames. Not good. I emailed Stevens over the weekend to ask them about the breach…
Category: Education Sector
(update) Data breach potentially exposes 250 Clark College students’ information
More on an incident mentioned previously on this blog from Ian Larson in The Oregonian: A cyberattack last week may have exposed the personal information, including the names and student identification numbers, of 250 Clark College students. Nine students’ social security numbers were also briefly exposed in the data breach. The college quickly secured its computer systems…
[corrected] Missing Plymouth State University backup drive contained Social Security Numbers of 1,059 students
On May 18, Plymouth State University noticed that an external hard drive that they used for backup purposes was missing. One of the files on the drive was a spreadsheet that contained the names and Social Security numbers of 1,059 students enrolled in the teacher education and certification program between 2005 and 2010. As the…
WA: Clark College issues alert after potential security breach
Fox12 News reports: An alert has been issued because of a potential database security breach at Clark College in Vancouver. An email, sent out to employees of the school, stated there was unauthorized access to college computer records that resulted in the potential disclosure of some faculty and student information. School authorities are encouraging people…
(follow-up) Sydney Uni ‘breached student privacy’
An investigation has found the University of Sydney failed in its obligations by not securing students’ private details on its website. A section of the university’s website was shut down in January after it was found sensitive information could be obtained by entering a student’s identification number. No password was required to access the name…
(update) Laptops stolen from a contractor’s van had a slew of sensitive student data
Remember the Illinois State Board of Education laptops stolen from a Harrisburg Project van recently? I was reading more about the incident and noticed that there was even more sensitive data on the laptops than originally indicated in media coverage: The staff data stored on the computers included name, demographics, Social Security number, teacher certification…