Security Breach Hits Wisconsin University Server Storing Student, Faculty SSNs

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.eweek.com/c/a/Security/Security-Breach-Hits-Wisconsin-University-Server-with-Student-Faculty-SSNs-842032/

By Fahmida Y. Rashid
eWEEK.com
2011-08-11

University of Wisconsin reported malware was found on a server that stored 
the names and Social Security numbers of 75,000 students and faculty 
members.

Former and current faculty and students at the University of 
Wisconsin-Milwaukee may have had their Social Security numbers exposed by 
malware.

Malware planted on a document-management database server may have exposed 
75,000 student and staff Social Security numbers and names, the University 
of Wisconsin-Milwaukee said Aug. 10. Considering the amount of critical 
research data stored on the server, the malware was most likely after 
research data and not personal information, said Tom Luljak, the 
university vice chancellor.

It's unknown how long the back-door malware was lurking undetected on the 
server, used by many departments to store research data and details about 
current and past cutting-edge research projects, but officials guessed it 
was for a "short period of time."

[...]


_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Learn encryption strategies that manage risk and shore up compliance.
Download Article 1 of CREDANT Technologies' The Essentials Series:
Endpoint Data Encryption That Actually Works
http://credant.com/campaigns/realtime2/gap-LP1/