d' Unwithering Flower...
Monday, October 25, 2004
Intruders alert
Hackers get into Purdue computers
University urges all to alter passwords as probe continues; no proof of data breaches.
Purdue University computer security experts on Thursday advised all students, faculty and staff to change their passwords after discovering a breach in the university computer systems.
At least 100 passwords had been obtained by unauthorized users, who gained access to 100 to 200 university computer servers, said Scott Ksander of Purdue's information technology office.
After the initial breach was discovered, an investigation found that systems in several areas of Purdue's West Lafayette campus had been accessed.
Ksander said that at this point, there is no evidence that any data, other than passwords, has been obtained, although that is still under investigation. Still, telling the system's 60,300 users to change their passwords was considered a wise precaution, he added.
Purdue computer security officials are looking for the source of the breach and trying to figure out who is tampering with the system.
Ksander said sometimes people who obtain passwords are looking for places to store files, such as copyrighted movies. Also, they may want to cause a disruption in computer service.
Purdue police were notified of the incident Wednesday. Computer tampering, a Class D felony, is punishable by up to three years in prison and a $10,000 fine. Computer trespassing is a Class A misdemeanor punishable by up to a year in prison and a $5,000 fine.
In March 2002, Purdue had a similar breach. Students were asked to change their passwords after hackers were discovered trying to get information from a student services computer system.
Ksander said there were no reports at the time that any student information was used for fraudulent purposes.
By Barb Berggoetz
barb.berggoetz@indystar.com
October 22, 2004
University urges all to alter passwords as probe continues; no proof of data breaches.
Purdue University computer security experts on Thursday advised all students, faculty and staff to change their passwords after discovering a breach in the university computer systems.
At least 100 passwords had been obtained by unauthorized users, who gained access to 100 to 200 university computer servers, said Scott Ksander of Purdue's information technology office.
After the initial breach was discovered, an investigation found that systems in several areas of Purdue's West Lafayette campus had been accessed.
Ksander said that at this point, there is no evidence that any data, other than passwords, has been obtained, although that is still under investigation. Still, telling the system's 60,300 users to change their passwords was considered a wise precaution, he added.
Purdue computer security officials are looking for the source of the breach and trying to figure out who is tampering with the system.
Ksander said sometimes people who obtain passwords are looking for places to store files, such as copyrighted movies. Also, they may want to cause a disruption in computer service.
Purdue police were notified of the incident Wednesday. Computer tampering, a Class D felony, is punishable by up to three years in prison and a $10,000 fine. Computer trespassing is a Class A misdemeanor punishable by up to a year in prison and a $5,000 fine.
In March 2002, Purdue had a similar breach. Students were asked to change their passwords after hackers were discovered trying to get information from a student services computer system.
Ksander said there were no reports at the time that any student information was used for fraudulent purposes.
By Barb Berggoetz
barb.berggoetz@indystar.com
October 22, 2004
posted by lisanwar at 2:09 PM
<< Home