Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Student personal data exposed in US University hack.

Tier-3 : 02 July, 2007  (Technical Article)
Tier-3 highlights requirement for multi-level security protection in environments where personal records are held.
More than 1,100 new students starting at the University of California Davis School of Veterinary Medicine got a shock last month when they found their personal accounts on the University computer system had already been accessed.

Investigators at the Sacramento-based University soon realised that the account details of around 1,120 applicant students from the 2007-2008 class had been illegally accessed.

The hacked data included names, birth dates and Social Security numbers of the victims.

Unconfirmed reports suggest that data from 375 students from the 2004/2005 intake year may also have been hacked.

Police are investigating the unauthorised system access and whether the personal data has been used for identity theft.

Commenting on this latest high-profile US hacking incident, Geoff Sweeney, CTO of behavioural analysis IT security firm Tier-3, said that the case highlights the need for multiple levels of protection whenever personal data is involved.

'Early indications are that the University had all the usual anti- virus, anti-trojan and other IT security applications in place, but these clearly weren't enough to stop the hacker(s),' Geoff Sweeney continued. 'Had they installed behavioural analysis software on their computer systems, this would have spotted any unusual activity, such as students accessing their accounts before they had started at the University and been given their ID/password details, and locked down the suspect sessions.'

According to Sweeney, the different types of threats facing modern IT managers are now so varied that a safety net approach - using behavioural analysis software - is now required to secure an IT system from the various attack vectors used by today's hacker-criminals.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo