Auburn University server hacked, data on nearly 14,000 at risk

Share this article:

Over a four-week span, an unidentified hacker could have accessed a compromised Auburn University College of Business server that contained personal information – including Social Security numbers – on close to 14,000 current and former students, faculty and staff.

How many victims? 13,698. 

What type of personal information? Names and Social Security numbers are among the information.

What happened? An unidentified hacker compromised an Auburn University College of Business server, which made the personal information accessible for four weeks.

What was the response? Upon discovery, the University patched the vulnerability and launched an internal investigation, as well as hired an outside computer forensics expert to determine the scope of the breach. All impacted individuals are being notified and offered a free year of credit monitoring and identity theft protection services.

Details: Auburn University became aware of the compromised server on Nov. 20, 2013. The hacker may have accessed the compromised server between Oct. 21, 2013, and Nov. 20, 2013. The information primarily involved courses taken by the students and work performed by the faculty and staff.

Quote: “At this time, Auburn has no evidence that the files containing personal information were actually accessed and is unaware of any actual or attempted misuse of this personal information,” according to a statement emailed to SCMagazine.com on Friday.

Source: An Auburn University statement emailed to SCMagazine.com.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

Transcript website flaw exposed personal data on 98k users

NeedMyTranscripts.com expose users' names, addresses and dates of birth, among other information, due to a site flaw that one user discovered.

Sourcebooks payment card breach impacts more than 5,000 customers

More than 5,000 customers had personal information stolen, but roughly 9,000 notification letters were sent out as a precautionary measure.

Cyberswim notifies customers that payment card data may be at risk

Malicious software installed on Sept. 24 may have compromised personal information for visitors that made purchases between May 12 and Aug. 28.