August Data Breaches Strike Yale and 4 Other Schools

  • By Dian Schaffhauser
  • 08/29/11

Yale University joined a number of other schools having to explain data breaches during the month of August. According to multiple media reports, the New Haven, CT institution accidently allowed a Google search engine to index a database containing private information about 43,000 former faculty, staff, and students who were involved with the university in 1999.

Yale administrators are blaming a change made in Google's software for the exposure. The data had been maintained on the same FTP server for years, which was used to store open source files. But in the fall of 2010 Google changed its indexing software to locate and index FTP servers, making the sensitive file public for 10 months, from September 2010 to July 2011.

The breach was discovered June 30 when an individual in that database did a search on his own name and discovered that his Social Security number was publicly displayed.

According to Yale Daily News, the school's newspaper, the university is offering those affected two years of credit monitoring and identity theft insurance.

The University of Wisconsin Milwaukee, Purdue University, North Carolina State University, and Cal Poly Pomona also discovered computer-based data breaches during August. The Wisconsin security incident was the worst, involving 79,000 people. All of the breaches exposed Social Security numbers. All of the institutions said they think none the exposed information was actually stolen or used by anybody.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • student reading a book with a brain, a protective hand, a computer monitor showing education icons, gears, and leaves

    4 Steps to Responsible AI Implementation

    Researchers at the University of Kansas Center for Innovation, Design & Digital Learning (CIDDL) have published a new framework for the responsible implementation of artificial intelligence at all levels of education.

  • glowing digital brain interacts with an open book, with stacks of books beside it

    Federal Court Rules AI Training with Copyrighted Books Fair Use

    A federal judge ruled this week that artificial intelligence company Anthropic did not violate copyright law when it used copyrighted books to train its Claude chatbot without author consent, but ordered the company to face trial on allegations it used pirated versions of the books.

  • server racks, a human head with a microchip, data pipes, cloud storage, and analytical symbols

    OpenAI, Oracle Expand AI Infrastructure Partnership

    OpenAI and Oracle have announced they will develop an additional 4.5 gigawatts of data center capacity, expanding their artificial intelligence infrastructure partnership as part of the Stargate Project, a joint venture among OpenAI, Oracle, and Japan's SoftBank Group that aims to deploy 10 gigawatts of computing capacity over four years.

  • laptop displaying a phishing email icon inside a browser window on the screen

    Phishing Campaign Targets ED Grant Portal

    Threat researchers at cybersecurity company BforeAI have identified a phishing campaign spoofing the U.S. Department of Education's G5 grant management portal.