.

Forensic Exam Concludes No Breach at Colorado University

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Tue May 06, 2008 9:41 am

Forensic Exam Concludes No Breach at Colorado University

We often hear of forensics as a way to prove guilt. It's good to see it work the other way.

Processes that seemed to mimic malicious behavior led the University of Colorado-Boulder (CU) to disclose a possible breach, the school said this week.

“Interaction between two incompatible software programs mimicked behavior consistent with malicious software," said Dan Jones, university director of IT security, in a statement.

Officials initially had suspected as many as 9,500 individuals had their names, Social Security numbers, addresses and grades potentially exposed to hackers. But a forensic exam turned up no malicious software, and there was no exposure of student and staff private data.
So what happened?

"The functioning of the computers led us to initiate our data breach protocol, which included providing notice to the community of a potential threat of identity theft," Jones said.

Dennis Maloney, chief technology officer for the university, said, "While the data was not compromised, this incident still reinforces the need to constantly improve IT security at CU."

The scare prompted moves, such as re-scanning systems for private data, eliminating Social Security and credit card numbers from all systems, encrypting laptop computers across campus, and improving password management procedures.


Original story:
http://www.scmagazineus.com/Forensic-ex ... S_Newswire

Don
CISSP, MCSE, CSTA, Security+ SME
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Wed May 07, 2008 6:31 am

Re: Forensic Exam Concludes No Breach at Colorado University

Cheers Don,

it's nice to see a story where no evidence of foul play was found after investigation and that additional pre-emptive changes have been made to improve the environment anyway.

If we could get more 'good news' stories like this it might make companies worry less about PR effects of a breach and not try to cover up any potential issues, which should improve security as a whole. Might even stop suits and beancounters from seeing security as a necessary cost/evil .... (pinch me, I'm dreaming ;) )
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Sat May 10, 2008 4:23 pm

Re: Forensic Exam Concludes No Breach at Colorado University

So why don't they disclose which are the 2 incompatible software programs?  ???
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.

Return to Forensics

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software