No matter how many times entities warn employees about phishing attempts, it seems that some inevitably fall for them anyway. College of the Holy Cross recently notified the New Hampshire Attorney General’s Office that 7 of their employees had fallen for phishing attempts that originated in Nigeria and Ghana. As a result of the phishing,…
Category: Education Sector
UK: Probe at Edge Hill University after student data breach
Rob Pattinson reports: A (sic) investigation has been launched after personal details of nearly 800 Edge Hill University students were sent out in an email. The email, sent by a university staff member to 53 students, mistakenly contained 798 other students’ addresses, email addresses, course enrolment details and student network passwords. The university told the…
SAISD website exposes students’ personal info (updated)
Lindsay Kastner reports: Confidential information about dozens of San Antonio Independent School District students was exposed on the Internet, apparently for months, and officials were scrambling Friday to repair the security breach. A Google search by a San Antonio Express-News reader who was checking out an unfamiliar phone number brought up the district’s “Potential Dropout…
MI: Hackers hit Troy schools
Mike Martindale reports: Police and Troy school officials are investigating a widespread hacking of the school district’s computer system. In a letter to parents obtained by The Detroit News, schools Superintendent Barbara Fowler said she told students and staff with accounts on the system to change their passwords so whoever’s responsible can’t access personal information….
UGA personnel data posted on web site (Updated)
Laura Diamond reports: University of Georgia officials are investigating how personal data on nearly 19,000 employees was publicly available on a university web site since at least 2008. […] The database was created for internal purposes and included the Social Security number, date of birth, employee name and other sensitive information for everyone who was…
Some days, I pull my hair out, Thursday edition
Everywhere I look, there are data breaches that I would want to include in DataLossDB.org’s database. But as I backfill the database to include incidents reported on my blogs that were never in the database, my research stumbles over tons of other breaches that should also be included. Rather than getting closer and closer to…