Massive data breach at several US universities
2 minute read
Several US Universities have been hit by a massive data breach, including Stanford University, University of California, University of Miami, University of Colorado Boulder, University of Maryland etc.
Hackers have stolen terabytes of student, prospective student, and employee personal information including transcripts, financial info, mailing addresses, phone numbers, usernames, passwords and Social Security Numbers. These breaches are part of the larger Accellion FTA leak which has affected ~50 organizations.
Some victims have already received emails from hackers (as reported by one affected individual on Hacker News):
Good day!
If you received this letter, you are a customer, student, partner or employee of University of California. The company has been hacked, data has been stolen and will soon be released as the company refuses to protect its peoples' data.
We inform you that information about you will be published on the darknet (Tor link redacted) if the university does not contact us.
Call or write to this store and ask to protect your privacy!!!!
In case you receive such an email, do not click the link unless you are familiar with using Tor safely.
When you’re dealing with a security incident
You should instantly block passwords, or suspend users, to prevent hackers from executing sensitive operations against compromised user accounts.
Protect your application and web services with ASPSecurityKit’s’s comprehensive security pipeline that’s built on Zero Trust and specifically its least privilege access security principles, so users gain access to only those operations and resources you explicitly grant, for the duration you decide.
Build Zero Trust thinking for software development
Because Zero Trust is not just an approach; it’s a mindset.
You can also develop this mindset by going through the hands-on tutorials from the Zero Trust Thinking (ZTT) series. ZTT is brought to you by ASPSecurityKit, the first true security framework for ASP.NET and ServiceStack built from scratch on the Zero Trust model.
Leave your email below to receive a notification of new ZTT articles and videos right in your inbox, once every two weeks or so.
Need help?
Looking for an expert team to build a reliable and secure software product? Or, seeking expert security guidance, security review of your source code or penetration testing of your application, or part-time/full-time assistance in implementation of the complete web application and/or its security subsystem?
Just send an email to [email protected] with the details or call us on +918886333058.