Data of 2,000 Johns Hopkins graduate students accessed on internet

Share this article:

More than 2,000 former graduate students of Johns Hopkins University are being notified that their personal information – including Social Security numbers – was stored on a server that was accessible via the internet, and was accessed a few dozen times.

How many victims? 2,166. 

What type of personal information? Names and Social Security numbers were among the information.

What happened? The personal information was stored on a server that was accessible via the internet, and the data was accessed a few dozen times.

What was the response? Upon discovery, the files were taken down and the university carried out a security audit. All university employees are receiving training to ensure a similar incident does not occur. All impacted individuals are being notified and offered a free year of credit monitoring and identity theft protection services.

Details: The university learned of the incident on March 19. The personal data belongs to graduate students who attended the Homewood campus between 2007 and 2009. The data may have been indexed by search engines or web crawlers.

Quote: “Somebody had stashed them on a machine, not realizing that when they did that, the files would be accessible on the Internet,” Dennis O'Shea, a university spokesman, said.

Source: baltimoresun.com, “Former Hopkins grad students' personal data exposed online,” April 26, 2014.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

About 60K transactions possibly affected in Cape May-Lewes Ferry breach

The security of card processing systems relating to food, beverage and retail sales at the Cape May-Lewes Ferry was compromised and payment card data may be at risk.

Arkansas State University-Beebe is investigating a potential breach

Arkansas State University-Beebe is notifying students and employees of a service running on one of its servers that could pose a potential breach to the system.

Unencrypted discs missing, Arizona State Retirement System notifies 44,000

Arizona State Retirement System notifies nearly 44,000 individuals enrolled in dental plans that two unencrypted discs containing their personal information are missing.