Isn’t it sad that the same thing that happened in a large school district in Texas recently–hackers working their way past District protections–and to the State Comptroller of Texas also just happened in Birdville ISD?
Two students from Birdville schools hacked into a school district network server and downloaded a file with 14,500 student names and Social Security numbers, officials said… “Everything I’ve seen does not give the indication that they were specifically seeking anything. They came across these files and when they did, they downloaded them,” Thomas said. “They did it from outside of the district.
Read more: Star Telegram
Let’s review…unencrypted social security numbers placed on a server accessible via the Internet accessed by school district students.
39% of the teens surveyed think hacking is “cool” and 16%, or roughly one in six, admitted to trying their hand at it. Only 15% of the entire sample has either been caught or knows someone who has – particularly disturbing considering 7% of young hackers reported they did so for money and 6% view it as a viable career path. (Read Source)
Isn’t it time organizations implemented more strict data encryption protocols? How many more data breaches will it take before school organizations realize that the way they “secure” confidential data is out of date? Consider the past….
Two students of ‘Riverside High School’ launched a hacking intrusion into the computer database of the ‘Durham Public Schools’. The young hackers downloaded the ‘Social Security numbers’ and personal information of numerous school employees, the ‘Durham Sheriff’s Office’ said on 14th December 2006. (Read Source)
After all, when students can connect to a server–I seriously doubt that they “hacked” anything–and download social security numbers from 2008-2009…well, that clearly says the people who made the data available didn’t take advantage of GPG/PGP, TrueCrypt, NCrypt or any of the technologies that would have made encryption a simple reality.
Let’s stop, take a breath before we throw more kids in jail for hacking, and ask ourselves, how long will it take for school organizations to embrace encryption?
Time for more modern encryption tools.
Finally, it’s important to consider that “hacktivism” is on the rise….
“Hacktivism is the cross between hacking and activism, so they’re out there to make a statement against people who have taken a stand against them,” said Evans.
Evans said anyone, from individuals to government and corporations are potential targets.
If you encrypt confidential data on your computer, and hackers bypass your organization’s security protocols, your data is still safe.
Enter your email address:
Delivered by FeedBurner