Breach at UNLV reported after 3 years
After 3 years the University of Nevada at Las Vegas (UNLV) has informed its 2000 employees about a data breach that took place in 2008
UNLV currently houses 28,000 students and 3,300 faculty and staff.
How was the breach discovered?
The UNLV Office of Information Technology found out about the breach during a maintenance check on a computer in the school’s Controller’s Office. It appeared that an unauthorized person might have accessed names and social security numbers of employees in 2008.
According to UNLV spokesperson “Though unauthorized access has not been confirmed, the Office of Information Technology continuously works to ensure sensitive data are protected and has taken steps to notify those potentially affected”
An email sent by the school says “If a breach occurred, those affected would be at an increased risk for identity theft”
How much information was leaked?
Information from employees who participated in a computer-purchasing loan program was compromised. In addition Social Security numbers of around 2,000 employees was accessed. Apparently no financial information, such as bank account numbers were accessed.
This is the first large data breach at the UNLV.
A statement issued by the school “Though unauthorized access has not been confirmed, the Office of Information Technology continuously works to ensure sensitive data are protected and has taken steps to notify those potentially affected”.
Student reactions
“I’m sure they’re doing everything they can. But it seems that not even Sony and big corporations can protect you, so we’ll see,” said Oscar Quiroz, UNLV civil engineering student
How is the investigation coming up?
The breach took place 3 years ago but was found out only now. It is not an easy task for the UNLV to find out how it happened considering the time frame. The investigation shows that it was not done by an external hacker. The employee who had used the computer during that period is no longer employed at UNLV hence it is very difficult to find out who the culprit was.
Strengthening Data Security at UNLV
Security policies are being reviewed by the UNLV officials. Training programs are being revised to ensure better data security. New measures are being implemented to protect personal information from internal and external dangers.
The University wants every student to visit this link information on detecting identity theft and what to do if your identity is stolen
Encryption software like Alertsec’s would have helped!
The use of encryption software would have helped to keep files protected on the computer. With encryption installed, none of the information or credentials would have been lost. Alertsec uses industry leading Check Point Full Disk Encryption (former Pointsec) software to create a web based encryption service that simplifies deployment and management of PC encryption
The best way to protect information stored on a PC is by using encryption. Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users.
Alertsec is part of the Durator Group which has been awarded the highest credit rating available.
