May 16, 2008

Server breach exposes identities of students, staff

A server breach at Oklahoma State University in Stillwater potentially compromised the confidential information of 70,000 students, staff and faculty who purchased parking and transit services permits in the past six years.

What type of personal information? Names, addresses and Social Security numbers.

What happened? University officials believe the person who hacked into the server wanted to use its bandwidth and storage capacity to distribute illegal content. However, they are not sure if any of the personal information was accessed by the intruder.

Details:IT staff took the server offline when the breach was discovered in March - and the school immediately took the Social Security numbers down. No fraud associated with the breach has yet been detected.

Quote:"This breakdown in security is totally unacceptable." - University President Burns Hargis.

Source:NewsOK.com, The Oklahoman Direct, "OSU breach raises fears of ID theft," May 15.
Previous Post
Next Post
Similar Articles
close

Next Article in The Data Breach Blog

Advertisement

How to Prevent Insider Threats!

POLL

More in The Data Breach Blog

Hackers raid Washington state court system to steal 160,000 SSNs, 1M driver's license numbers

Hackers raid Washington state court system to steal ...

After the public website of the Washington state Administrative Office of the Courts was compromised in February, an investigation revealed the severity of the breach in April.

Personal California birth records found in "unsecure" location

The California Department of Public Health announced that the data included names, addresses, Social Security numbers, and medical information.

Investment regulator loses portable device containing personal data

Although the specifics of the lost information is unknown, the Investment Industry Regulatory Organization of Canada has announced that 52,000 clients of 32 brokerage firms have been affected.