Re: Chapel Hill researcher demoted after security breach

["Koerber, Jeff" <jkoerber () TOWSON EDU>]

Yankaskas' attorney says that the university knew about the breach in 2006 but didn't notify her about it.  If that is 
true, then she shouldn't have been demoted.  Instead, those in the IT department who knew about this and didn't do 
anything about it should be fired.  It would be a different story if the IT department warned her that there was a 
security issue and she refused to fix it.  

For those who don't have an online subscription to the Chronicle: 
http://www.heraldsun.com/view/full_story/9804450/article-Cancer-researcher-fights-UNC-demotion?instance=most_recommended


http://www.reflector.com/ap/staten/unc-researcher-appeals-demotion-pay-cut-145531


Jeff Koerber
Supervisor, Student Computing Services Lab and Service Desk
Office of Technology Services
Towson University



-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Nicole 
Kegler
Sent: Thursday, October 07, 2010 2:47 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Chapel Hill researcher demoted after security breach

  Has anyone been keeping up with this story about the Chapel Hill 
researcher who was demoted after her server, which contained PII, was 
hacked?

http://chronicle.com/article/Chapel-Hill-Researcher-Fights/124821/?key=SmN7cgVsO3RHZ3pqYjgRMDwBP3xsYhh7YHVJOXB6bl9TGQ%3D%3D
 



  I would be interested in hearing your thoughts about this, and what 
could have been done differently by the university.

-- 
Nicole Kegler
Communications Manager
University Information Security Office
Georgetown University
202-687-5784

Protecting data is a shared responsibility!

INSTALL antivirus and antispyware software.
USE strong passwords.
KNOW who you are dealing with online.
STORE confidential and sensitive data on encrypted devices only.
SHUT DOWN computers or disconnect from the Internet when it's not in use.