Hackers download personal details of University of Virginia faculty members Hackers download personal details of University of Virginia faculty members - RSS feed from Security Park
(13/06/2007)

Around 6,000 University of Virginia faculty members have been warned that their personal details - including their Social Security numbers and dates of birth - have been downloaded by hackers.

According to University officials, on 54 separate days between May 20, 2005 and April 19, 2007, hackers tapped into the records of 5,735 faculty members. The information included names, Social Security numbers and dates of birth. No credit card, bank account or salary information was involved in the incident. No data pertaining to students or the University’s non-faculty employees were exposed.

The criminal investigation is being conducted by University Police in consultation with the FBI and the University’s computing and audit professionals. No suspects have been identified so far.

The college's announcement of the major systems hack drew astonishment and raised eyebrows from Phil Higgins, a senior partner with Brookcourt Solutions, who expressed considerable surprise at the length of time the hackers had access. "Security system failures are becoming a fact of life in the modern IT environment, especially when IT managers rely on a single security technology to protect their systems, but a failure lasting two years? Come on," he said.

According to Higgins, the Charlottesville-based college's admission is a clear-cut illustration that the modern IT security manager needs to take a holistic approach to their security systems. "IT security has become a multi-layered discipline. AV on the desktop and server with an archaic firewall isn’t enough. It’s not just about the hackers standing at your gate; in today’s environment, research shows that internal based attacks are increasing. Identity managed access to the physical and application layer provides better control whilst intrusion detection and prevention coupled with a behavioural analysis system adds to a robust structure" he said.

"Modern day hackers, as shown by the University of Virginia systems hack, are sophisticated Internet users, and it takes a sophisticated best of breed multi-product approach to tackle the problem," he added.

Related topics:  IT Network and Computer Security   Security market sectors 


print versionPrint version | email this to a friendEmail to a friend | related articlesRelated articles


Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.


Other Security news and resources


Security News Suppliers Directory Jobs forum Classifieds Knowledge base White papers Research library Security books Special reports Security interviews Security companies Security events Security links Security market

Product channels

Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products

IT Security white papers and research library

Access Control  Authentication  Data Management  Data Security  Digital Signatures  Email Security  Identity Management  Internet Security  Intrusion Prevention  Network Security  Remote access security  Security Management  Security Policies  Security Software  Security Threats  Virus Detection Software  Virus Protection  VPN  Vulnerability Assessment  Wireless Security 

Security books, guides, standards and toolkits

RFID and Smart Cards books, guides and reference documents  Biometric books, guides and reference documents  CCTV books, guides and reference documents  Intruder alarms and intrusion detection systems books, guides and reference documents  Monitoring and surveillance books, guides and reference documents  IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits  Fire, Health & Safety books, guides and reference documents

Security Resources
Directory GET LISTED! Jobs forum Classifieds Knowledge base White papers Research library Security books Security videos Special reports Security companies Security events Security links Security market Company news

Security Products
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Security products

Security Markets
Bank and financial services security Corporate and enterprise security Education and school security Entertainment and events security Homeland and Government security Hospital and healthcare security Infrastructure and utilities security Manufacturing and industrial security Public sector security Residential and home security Retail security Small business security Sports and recreational security Transport and logistics security


Ensure that you conduct an effective information security risk assessment that is in line with ISO 27001 by purchasing vsRisk™ Risk Assessment Tool

Need a
Security reference book?
Find it on Amazon
Security books







advertise
sumbit an article
copyright
terms & conditions
privacy policy


CMS and Web design by www.Areza.com

Article search

Directory search


add your company
Google

ISO 18028 (Network Security Management)
Home | About | Contact | Submit article | Advertise | Newsletter | RSS | Search