A large data breach at Auburn University exposed, among other sensitive information, the Social Security Numbers of about 364,012 current, former and prospective students. This breach includes information of those prospective students who never even applied to Auburn. How is that? Universities can purchase the information of students who have complete standardize tests, ACTs & SATs, and prior to 2007 that included student’s SSN.
“Thousands of students who never even applied to Auburn University have had their personal information, including Social Security numbers, exposed due to a security flaw discovered March 2. Information about 364,012 current, former and prospective students was accessible online between Sept. 1, 2014, and March 2, 2015.
“The exposure resulted from configuration issues with a new device installed to replace a broken server,” a statement on the university website reads. “After securing our server, we implemented additional network security measures.”
Exposed data includes names, addresses, email addresses, birth dates, Social Security numbers and academic information. The Alabama university had a 2014 enrollment of 25,912 students, but the pool of prospective students caught up in this incident is perhaps the most startling aspect of the breach. Universities can buy information students provide when taking standardized tests like the ACT or SAT, and prior to 2007, that included students’ Social Security numbers. People who have already gone through college without ever considering attending Auburn have been affected by this lapse in data security.”
You can read the full story here: Massive Auburn Data Breach Ensnares Applicants, Students & Those Who Never Even Applied