Unauthorized access gained to about 800 JSTOR accounts

Share this article:

Digital library JSTOR is notifying approximately 800 users that their personal information may be at risk after their MyJSTOR accounts were accessed by an unauthorized third party.

How many victims? About 800. 

What type of personal information? Usernames, passwords, email addresses, primary areas of study, position/academic statuses, and institution affiliations.

What happened? An unauthorized third party gained access to MyJSTOR accounts, which contained the personal information.

What was the response? JSTOR is notifying impacted users and urging them to change their passwords. JSTOR is reviewing and enhancing security measures to prevent a similar incident from occurring.   

Details: The breach was discovered on March 17.

Quote: “We do not store credit card data or financial information of any kind, so this was not accessed,” according to the notification.   

Source: oag.ca.gov, “Important Security Notice from JSTOR,” March 31, 2014

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

About 60K transactions possibly affected in Cape May-Lewes Ferry breach

The security of card processing systems relating to food, beverage and retail sales at the Cape May-Lewes Ferry was compromised and payment card data may be at risk.

Arkansas State University-Beebe is investigating a potential breach

Arkansas State University-Beebe is notifying students and employees of a service running on one of its servers that could pose a potential breach to the system.

Unencrypted discs missing, Arizona State Retirement System notifies 44,000

Arizona State Retirement System notifies nearly 44,000 individuals enrolled in dental plans that two unencrypted discs containing their personal information are missing.