Home page logo

dataloss logo Data Loss mailing list archives

ASU employees still affected by security breach
From: Erica Absetz <eabsetz () opensecurityfoundation org>
Date: Mon, 11 Mar 2013 09:05:32 -0400


JONESBORO, AR (KAIT) - More employees on the campus of Arkansas State
University have been affected by tax fraud.

According to Vice Chancellor of ASU, Dr. Len Frey, roughly 150
employees have now become victims, that's about 10% of their staff.

Frey explained that a task force has been working daily to find out
how the data was obtained.

"We have not yet been able to determine how the data was obtained or
if the data was obtained from ASU or one of our third party vendors,"
Frey said. "We've learned a lot. In short, we have not been able to
identify what has happened."

Frey speculated they've not seen the last of employees affected.

"Because obviously the numbers have increased over the past 2 to 3
weeks, and in discussing this with the IRS, it could well go on up
until filing deadlines and beyond," Frey said.

Frey told Region 8 News next week, an identity theft specialist with
the Attorney General's Office will come in to discuss what steps the
victims should take from here, "...and also, what all of our employees
should do," Frey said. "Obviously, some of our employees have not been
impacted, the majority have not been impacted at this time, we're all
being encouraged to take precautions to take appropriate actions to
protect our identities."

Frey added in order to prevent further breaches, they've restricted
the amount of people who have access to sensitive data.

"I think any time that we look at our systems, in hindsight we see
that we could do better, and that really doesn't matter what we're
looking at," Frey said. "We've just tightened up our access to a lot
of different things."

Region 8 News will continue to track this story and bring you
developments as they become available.
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list


Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

  By Date           By Thread  

Current thread:
  • ASU employees still affected by security breach Erica Absetz (Mar 11)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]