CU reports another breach of computer system

August 19, 2005

Associated Press

http://www.9news.com/acm_news.aspx?OSGNAME=KUSA&IKOBJECTID=d0d5ae92-0abe-421a-00d7-320d049d8214&TEMPLATEID=0c76dce6-ac1f-02d8-0047-c589c01ca7bf



BOULDER (AP) - The University of Colorado has turned up another case of unauthorized access of one of its computer servers, potentially exposing 49,000 database entries that could put some current and former students at risk for identity theft.

There was no evidence that personal information was stolen or used, the university said Friday.

The affected server held ancillary information used by the Registrar's Office and has been taken offline, the university said. Information including Social Security numbers, names, addresses and phone numbers dating from June 1999 to May 2001 and from fall 2003 to summer 2005 could have been accessed, the university said.

The university was notifying affected individuals about the breach, said Barbara Todd, CU-Boulder registrar, and authorities were investigating.

CU officials said the breach was detected through work undertaken following three breaches of university computer systems within two weeks earlier this summer.

CU has asked an outside security firm to assess its technology safeguards. The university also is working to limit external access to our servers and to encrypt sensitive data, said Bobby Schnabel, vice provost for academic and campus technology.

There are 6,000 servers and 20,000 computers on campus.


main page ATTRITION feedback