Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Vital Files Exposed In GMU Hacking
Jonathan Krim, Washington Post 2005-01-11

A computer hacker apparently broke into a George Mason University database containing student and employee Social Security numbers, leaving 32,000 people uncertain whether their finances or identities might be compromised.

Comments Mode:
Vital Files Exposed In GMU Hacking 2005-01-12
Anonymous (2 replies)
Social security information would likely be compromised even if the university used "g-numbers"... Why? If hackers are able to exploit windows server flaws to obtain personal information, what would keep them from finding the g-number--social security number lookup table.

The only way to limit ...

[ more ]  [ reply ]
Vital Files Exposed In GMU Hacking 2005-01-13
Anonymous
the g-number SSN table wouldn't exist on most systems as users are identified by the g-number. This is the point....

[ more ]  [ reply ]
Vital Files Exposed In GMU Hacking 2005-01-13
Anonymous (1 replies)
I'd say clients first. And only the software companies where proof can be had that it was an exploit and not merely poor configuration.

Seriously, lets take the dreaded msft. Yes there are issues. Nobody can seriously deny that. But I really do NOT buy that it is msfts fault that some employer h...

[ more ]  [ reply ]
Vital Files Exposed In GMU Hacking 2005-01-14
Anonymous
I disagree. msft only just recently started to put their default settings to a more 'secure' mode. Server defaults should have always been to be locked down, requiring administrators to open up what's necessary. And any server containing SSNs or other such info should not enable any kind of publi...

[ more ]  [ reply ]
Vital Files Exposed In GMU Hacking 2005-01-12
Anonymous
Universities, and any orginization that uses SSN's, should be liable in court for misuse of stolen SSN #s if they are proved to be used for ID theft. They should either not use SSN's or secure their data as if they would be sued if it was stolen and used for fraud. Too many companies use your SSN as...

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus