August 13, 2012

Personal data on thousands of University of Arizona students publicly viewable

Students, vendors and others who received payments from the University of Arizona last year had their personal data posted to the school's public server.

How many victims? About 7,700 vendors, consultants, guest speakers and students.

What type of personal information? Names and Social Security numbers.

What happened? During an upgrade to the university's financial systems, thousands who submitted their personal data in order to receive school payments or reimbursements had their information mistakenly posted to a public server.

What was the response? The university sent letters to victims and offered them a free year of credit monitoring.

Details: The university found out about the breach after a student searched for herself on Google and saw her information posted on the university's public server. School officials initially assumed the server contained only public information. The university investigated the situation to find that some of the online data had already been accessed by strangers.  

Source: azstarnet.com, Arizona Daily Star, University of Arizona server exposes personal data on 7,700,” Aug. 8, 2012.

Previous Post
Next Post
Related Articles
Related Topics
Related Links
close

Next Article in The Data Breach Blog

Advertisement

How to Prevent Insider Threats!

POLL

More in The Data Breach Blog

Hackers raid Washington state court system to steal 160,000 SSNs, 1M driver's license numbers

Hackers raid Washington state court system to steal ...

After the public website of the Washington state Administrative Office of the Courts was compromised in February, an investigation revealed the severity of the breach in April.

Personal California birth records found in "unsecure" location

The California Department of Public Health announced that the data included names, addresses, Social Security numbers, and medical information.

Investment regulator loses portable device containing personal data

Although the specifics of the lost information is unknown, the Investment Industry Regulatory Organization of Canada has announced that 52,000 clients of 32 brokerage firms have been affected.