Penn State Hit Twice by Malware-Related Data Breaches

A cached database containing private information is troubling Pennsylvania State University staff, as is an infected computer in its library system. The university made a public announcement recently that it had found a computer in its Outreach Market Research and Data office that was communicating with a bot controller, thereby exposing nearly 16,000 Social Security numbers to possible compromise. A bot is malware that enables its instigator to gain control over the computer running it.

According to Penn State the computer had at one time contained a database for the institution's use. That had been removed when the institution stopped using Social Security numbers in 2005; however, an archived copy remained undetected in the computer's cache.

In compliance with a state law regulating the breach-of-personal information, the university has sent out letters to those included in the database to warn them of the possible breach. But administrators said that they have no evidence the data has been used or even accessed by unauthorized users.

"Even when theft is only a remote possibility, we alert anyone who may have been affected, and arm them with information and steps to take to mitigate their risk," said Sarah Morrow, chief privacy officer.

The university also recently reported a similar breach that occurred on a library computer that may have exposed data on 9,766 people. They too received information from the university on preventing data theft. No other details were available.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • SXSW EDU

    Explore the Future of AI in Higher Ed at SXSW EDU 2025

    This March 3-6 in Austin, TX, the SXSW EDU Conference & Festival celebrates its 15th year of exploring education's most critical issues and providing a forum for creativity, innovation, and expression.

  • white clouds in the sky overlaid with glowing network nodes, circuits, and AI symbols

    AWS, Microsoft, Google, Others Make DeepSeek-R1 AI Model Available on Their Platforms

    Leading cloud service providers are now making the open source DeepSeek-R1 reasoning model available on their platforms, including Amazon, Microsoft, and Google.

  • glowing futuristic laptop with a holographic screen displaying digital text

    New Turnitin Product Brings AI-Powered Tools to Students with Instructor Guardrails

    Academic integrity solution provider Turnitin has introduced Turnitin Clarity, a paid add-on for Turnitin Feedback Studio that provides a composition workspace for students with educator-guided AI assistance, AI-generated writing feedback, visibility into integrity insights, and more.

  • From Fire TV to Signage Stick: University of Utah's Digital Signage Evolution

    Jake Sorensen, who oversees sponsorship and advertising and Student Media in Auxiliary Business Development at the University of Utah, has navigated the digital signage landscape for nearly 15 years. He was managing hundreds of devices on campus that were incompatible with digital signage requirements and needed a solution that was reliable and lowered labor costs. The Amazon Signage Stick, specifically engineered for digital signage applications, gave him the stability and design functionality the University of Utah needed, along with the assurance of long-term support.