Hackers break into sensitive Purdue University server

Share this article:

A computer server containing the personal information of thousands of former Purdue University students was accessed by hackers.

How many victims? 7,093.

What type of personal information? Social Security numbers.

What happened? Hackers on April 5, 2010 broke into a university server containing course records from 2000 through the summer session of 2005. 

Details: School officials said there is no evidence that the sensitive information was accessed. Instead, they believe the hackers aimed to use the infected computer system to attack other servers.

Quote: “Through our investigation, we found no evidence that the unauthorized user attempted to find or read any files with personal information in our system, but felt informing people who may have been affected was a necessary precaution," Laszlo Lempert, head of the Department of Mathematics, said in a statement. "We regret the breach occurred, and we've taken extensive measures to prevent this from happening again."

What was the response?  The school on Monday mailed notification letters to affected individuals. Though the breach occurred over a year ago, it took school officials until June to sort through the information on the server and identify the extent of the breach. The Indiana Attorney General's office has been notified.

Source: jconline.com, Journal and Courier, “Purdue warns ex-students of data breach,” Aug. 17, 2011.

Share this article:
You must be a registered member of SC Magazine to post a comment.
close

Next Article in The Data Breach Blog

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

Sourcebooks payment card breach impacts more than 5,000 customers

More than 5,000 customers had personal information stolen, but roughly 9,000 notification letters were sent out as a precautionary measure.

Cyberswim notifies customers that payment card data may be at risk

Malicious software installed on Sept. 24 may have compromised personal information for visitors that made purchases between May 12 and Aug. 28.

Marquette University notifies graduate applicants of possible breach

Settings for an internal file server were inadvertently modified, making graduate school applications accessible to anyone with Marquette University login credentials.