Carnegie Mellon business school reports data breach
It notified 19,000 students, faculty, alumni and staff of the incident
Computerworld - Carnegie Mellon University's Tepper School of Business has notified 19,000 students, alumni, faculty and staff that their personal data may have been compromised, according to university spokesman Mike Laffin.
The business school learned of the incident on April 10, when the university's IT Computing Services Office noticed unusual activity on the business school's computer network, Laffin said.
After discovering a potential breach, Computing Services disabled, inspected and secured all servers and PCs, he said. It also posted a statement online describing the incident.
Laffin said the university sent e-mail notices, followed by hard-copy letters, to the affected people. "There is no evidence that there has been any unauthorized use of the personal information," he said.
The compromised information included Social Security numbers and grades for the master's alumni classes of 1997 through 2004, job offer information for the master's alumni classes of 1985 through 2004, contact information for all alumni, and Social Security numbers and grades for the doctoral alumni classes of 1998 through 2004.
Laffin said that approximately 5,000 to 6,000 of the 19,000 affected individuals had their Social Security numbers and credit card information compromised.
The Tepper incident is similar to computer breaches reported in recent weeks by other universities, including Tufts University in Medford, Mass., and Boston College (see story).
Read more about Security in Computerworld's Security Topic Center.


- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Practice Management: Double Billing Rate and Improve Patient Services
- Would you like to double your billing rate and achieve faster payment for services?
Download this customer success story to see how One Health... - Mission Critical Data Explosion and Customer Case Study
- Would you like to double your tier 1 storage capacity while simultaneously reducing your storage footprint?
Download this customer success story to see how... - Protecting Against Database Attacks and Insider Threats: Top 5 Scenarios
- Read this new eBook to learn the top five scenarios and essential best practices for preventing database attacks and insider threats.
- Database Activity Monitoring Is Evolving
- Read the analyst report and learn how you can leverage the core capabilities of a DAP solution for better database security.
- Establishing a Strategy for Database Security is No Longer Optional
- The options for securing increasingly valuable databases are very broad and deep, and can be confusing. This research provides an overview of three... All Privacy White Papers
- Close a Dangerous Vulnerability: Automated Methods for Managing Admin Rights
- In this exclusive webcast from Viewfinity, you'll hear how to leverage Group Policy Object settings to close this vulnerability by elevating privileges for...
- Data Protection and Disaster Recovery with iSCSI and VMware
- Get this on demand webcast now
- Distributed Database Security with Real-time Monitoring
- View this demo and learn how IBM InfoSphere Guardium database activity monitoring can help protect your sensitive data in distributed DBMS environments with...
- InfoSphere Warehouse Packs Demo
- These flash modules make warehousing more tangible and relevant to business users through detailed explanations of the InfoSphere Warehouse Packs.
- Delivery Management -- Extending Lifecycle Management
- Date: Wednesday, June 20, 2012, 1:00 PM EDT
Siloed organizations continue doing the wrong things and doing things wrong, leading to increased costs,...
All Privacy Webcasts