Analysis Reveals No Security Breach, No Personal Data Exposed At CU-Boulder

[lyger <lyger () attrition org>]

http://www.colorado.edu/news/r/c44664813b5b2e378a26238eafecf33a.html

The University of Colorado at Boulder today announced that a forensic 
analysis of a computer suspected to have been compromised last week 
revealed no malicious software, and no exposure of student and staff 
private data.

"The analysis by our staff, working closely with the consulting firm of 
Applied Trust Engineering, revealed an interaction between two 
incompatible software programs that mimicked behavior consistent with 
malicious software," said Dan Jones director of IT Security at CU-Boulder.

"The functioning of the computers led us to initiate our data breach 
protocol, which includes providing notice to the community of a potential 
threat of identity theft," Jones said.

Dennis Maloney, chief technology officer for CU-Boulder, said, "While the 
data was not compromised, this incident still reinforces the need to 
continue to constantly improve IT security at CU. We also intend to share 
our discovery of the software incompatibilities with our colleagues."

[...]
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml