BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Hackers leak personal info of students, employees and alums

From: security curmudgeon <jericho () attrition org>
Date: Wed, 3 Oct 2012 10:04:28 -0500 (CDT)

http://www.thedp.com/article/2012/10/hackers-leak-personal-info-of-students-admins-and-alums


Hackers leak personal info of students, employees and alums
Team GhostShell, the group of hackers, has posted information from a Penn database 

By Julie Xie ยท October 2, 2012, 10:27 pm
Around 120,000 records from universities around the world including Penn were released on the internet Monday.
Full names, PennCard numbers, phone numbers and email addresses of students, administrators and alumni were posted online. A total of 1,764 entries from Penn were released.
Information from five database tables called "aod_user," "coursereview_tblusers," "lgbtc_users," "nec_wp_users" and "OHE_FS_student" have been released. They were all part of a larger database entitled "vpul."
According to the leak, 322 database tables from Penn have been compromised, of which only these five have been released. This information was published on three different sites and has since been taken down from two of them.
The database tables listed seem to correspond with programs under the Office of the Vice Provost for University Life. 

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
Previous By Date Next
Previous By Thread Next

Current thread: