-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Christ.
FYI, - - ferg - ---------- Forwarded message ---------- From: Jake Kouns <[email protected]> Date: Thu, Dec 9, 2010 at 9:13 PM Subject: [Dataloss] UW-Madison warns 60,000 of card data theft To: [email protected], [email protected] http://host.madison.com/wsj/news/local/education/university/article_f5966aa c-0408-11e0-af11-001cc4c03286.html Records with the names and identification card numbers of 60,000 people affiliated with UW-Madison were hacked into, compromising Social Security numbers. UW-Madison became aware of the problem Oct. 26 and notified the mostly former students, faculty and staff members in a letter dated Nov. 30, said UW-Madison spokesman John Lucas. One of the files in the Wiscard system, which is administered through the Wisconsin Union, contained old university photo IDs that had social security numbers embedded in the ID number along with corresponding cardholder names. No other personal identification information was contained in the files. "Before privacy was taken as seriously as it is today, a student's Social Security number was embedded inside that ID card number," Lucas said. An investigation by UW-Madison's Division of Information Technology and office of computer security found nothing to suggest that anyone had downloaded or used the information in any unauthorized way, Lucas said. The identities of those who obtained unauthorized access remain unknown. _______________________________________________ Dataloss Mailing List ([email protected]) Archived at http://seclists.org/dataloss/ Unsubscribe at http://datalossdb.org/mailing_list -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFNAb9Zq1pz9mNUZTMRAv9hAKCTLLd+02+x7qbMQ4ateB+r0eBK0ACglttR ZrZSdQvV6FaaZ/VmqcaErLA= =egDh -----END PGP SIGNATURE----- -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
