Hackers Feast on Georgia University Personnel Records
ByEarlier, hackers used to hack into the websites of multinational banks. Later, they started hacking into government-maintained websites to prove their point. And now, apparently, they are fancying universities and colleges.
University of Georgia has summoned an investigation regarding the hacking into the personal data of more than 8,500 current and former employees at the university.
The hacking by an intruder is being described as 'a criminal act of computer trespass.'
The university says that the initial intrusion might have occurred as early as Sept. 28. The investigation reportedly began Oct.1, when two of the UGA employees reported that their passwords were reset by someone unknown. Incidentally, these two employees work at the Information Technology department and have access to information of other employees.
The perpetrators thus used these two accounts to obtain information about thousands of other former and current employees of UGA.
"This appears to us to be a planned intrusion by someone who knew enough about our operations to know which accounts to attack and where the sensitive information was located within the system," said Timothy M. Chester, UGA vice president for Information Technology.
"It is clearly a criminal act of computer trespass, and we are working with UGA Police to investigate."
The data that was accessed includes names and Social Security numbers, as well as other personal information. Current and former employees whose records may have been compromised will be notified directly by email or U.S. mail as addresses are available for them, the university said.
Investigators have not yet found success in figuring out the person behind the hack. They do not know whether the hackers have used the information obtained in any way, said Tom Jackson, UGA vice president for Public Affairs.
The UGA Police Department's three-person computer forensics team is investigating the break-in, Jackson said to OnlineAthens.
In the meantime, the university leadership has asked employees to strengthen their passwords and other security data.
"It is important that employees also take steps to make sure their MyID information is secure," Chester said.
"Make your secret question and answer pairs impossible to guess. Don't use questions to which the answers may be found on your vita or your Facebook page."