Cornell Suffers Massive Security Breach
Social Security Numbers Stolen
A stolen Cornell University computer has compromised the personal information of thousands of members of the University community. The computer contains the names and social security numbers of current and former students as well as current and former faculty and staff members.
The affected people totaled 22,546 current and former students and 22,731 current and former faculty and staff, amounting to 45,277 people in the Cornell community.
The breach appears to have affected recent graduates, as well as students enrolled during the 2008-2009 school year. There have been no reports of students entering in the 2009-2010 school year who have been affected.
The social security numbers and names on the computer are not believed to be encrypted, meaning that anyone can access the data by simply opening a file.
WVBR spoke early on Tuesday afternoon with University spokesman Simeon Moss who confirmed that a security breach had occurred and that an internal investigation is now underway. Moss declined to comment further. Law enforcement officials have been notified and further investigation is pending.
The official letter will contain a full description of the services the University is offering at its expense.
A call center will also be established and a set of frequently asked questions, accessible at http://faq-june2009.cuinfo.cornell.edu/ has been issued to those people whose information has been affected.
The University has not yet stated from where the laptop was stolen. However, Cornell and Ithaca police logs indicate two thefts of computers this month. One investigation, on the Cornell campus, is closed. Another, describing the theft of a laptop and a backpack from a vehicle on Seneca street, remains pending. The Ithaca Police Department would not confirm whether that investigation is related to the security breach.
Stay tuned to WVBR for continuing coverage and keep your browser on WVBR.com for updates. WVBR will also have exclusive interviews with Cornell officials as the story develops.
The affected people totaled 22,546 current and former students and 22,731 current and former faculty and staff, amounting to 45,277 people in the Cornell community.
The breach appears to have affected recent graduates, as well as students enrolled during the 2008-2009 school year. There have been no reports of students entering in the 2009-2010 school year who have been affected.
Cornell to Offer Fraud Assistance
An internal memo sent Friday from University Auditor Mike Dickinson was obtained by WVBR. The message said that currently, no misuse of this sensitive information has been found. Also in the message, Cornell said that they have enlisted the help of Kroll Fraud Solutions to "provide fraud counseling and credit monitoring services at the university's expense."
The social security numbers and names on the computer are not believed to be encrypted, meaning that anyone can access the data by simply opening a file.
WVBR spoke early on Tuesday afternoon with University spokesman Simeon Moss who confirmed that a security breach had occurred and that an internal investigation is now underway. Moss declined to comment further. Law enforcement officials have been notified and further investigation is pending.
University to Contact Affected Individuals
Shortly after WVBR broke the story on Tuesday, the University notified all students and staff affected by the breach via e-mail late in the afternoon. The e-mail contained preliminary information about the breach and came in advance of formal notifications via U.S. mail. Click here to read the text of the e-mail sent to affected members of the Cornell community.
The official letter will contain a full description of the services the University is offering at its expense.
A call center will also be established and a set of frequently asked questions, accessible at http://faq-june2009.cuinfo.cornell.edu/ has been issued to those people whose information has been affected.
Computer Stolen Earlier in June
The computer itself was stolen earlier this month, though University officials only became aware of the security issues late last week. The computer had been issued to a member of the Cornell technical staff, who was correcting transmission errors found in the processing of files. The data was being used for troubleshooting, and under information security policy, should have been in a physically secure location. University officials have stated that the employee's actions violated this policy.
The University has not yet stated from where the laptop was stolen. However, Cornell and Ithaca police logs indicate two thefts of computers this month. One investigation, on the Cornell campus, is closed. Another, describing the theft of a laptop and a backpack from a vehicle on Seneca street, remains pending. The Ithaca Police Department would not confirm whether that investigation is related to the security breach.
Stay tuned to WVBR for continuing coverage and keep your browser on WVBR.com for updates. WVBR will also have exclusive interviews with Cornell officials as the story develops.
WVBR News - Tuesday, June 23, 2009
WVBR NEWSLINE ARCHIVE
~Cornell Student's Body Recovered from Fall Creek Gorge (Tue 8/10)
~Earthquake Shakes Ithaca (Wed 6/23) 1 Comment
~Water Main Break Endangers Cornell Building (Fri 5/21)
~Scientists Create Living Cell From Synthetically-Engine... (Fri 5/21)
~Senate Primary Elections Indicate an Interesting Midter... (Wed 5/19)
~Limewire Taken To Court (Thu 5/13)
~Apple, Adobe, Flash and the iPhone (Thu 5/13)
~Childhood Obesity In America (Thu 5/6)
~Oil Spill in the Gulf still a worry (Tue 5/4)
~Cornell Students Protest Nike's Treatment of Honduran W... (Mon 5/3)
~Cornell Student Reported Injured in Fall Creek Gorge (Mon 5/3)
~World's Largest Laser And Earth's Smallest Star (Thu 4/29) 1 Comment
~Census Takers Visiting Homes in Ithaca (Wed 4/28)
~General in Town (Mon 4/26)
~Earth Day Celebrations in Full Swing (Thu 4/22)
~New Work In Artificial Pancreas Development (Fri 4/16)
~NASA Planning To Send Six Astronauts And One Robot Into... (Thu 4/15)
~Cornell University Holds Second Annual "Sick in America... (Tue 4/13)
~Justice Stevens' Retirement Will Pose a Political Chall... (Tue 4/13)
~Tompkins County Travel May Be Affected If US Airways an... (Mon 4/12)
~Trial of former Cornell student continues (Thu 4/8)
~Body of Matthew Zika Recovered (Wed 4/7)
~Moderate Exercise May Promote Healthy Baby Delivery Wei... (Tue 4/6)
~Ithaca Farmers Market to Open Saturday (Fri 4/2)
~Toads and Earthquakes (Thu 4/1) 1 Comment
~Genetic Switches and Vocal Development (Thu 4/1)
~Spring Street Cleaning Notice (Fri 3/19)
~New Exoplanet Found (Thu 3/18)
~Deep Brain Stimulation May Hold Promise For Epilepsy Pa... (Thu 3/18)
~Statement by President David Skorton on Death of Matthe... (Sat 3/13)
~Earthquake Shakes Ithaca (Wed 6/23) 1 Comment
~Water Main Break Endangers Cornell Building (Fri 5/21)
~Scientists Create Living Cell From Synthetically-Engine... (Fri 5/21)
~Senate Primary Elections Indicate an Interesting Midter... (Wed 5/19)
~Limewire Taken To Court (Thu 5/13)
~Apple, Adobe, Flash and the iPhone (Thu 5/13)
~Childhood Obesity In America (Thu 5/6)
~Oil Spill in the Gulf still a worry (Tue 5/4)
~Cornell Students Protest Nike's Treatment of Honduran W... (Mon 5/3)
~Cornell Student Reported Injured in Fall Creek Gorge (Mon 5/3)
~World's Largest Laser And Earth's Smallest Star (Thu 4/29) 1 Comment
~Census Takers Visiting Homes in Ithaca (Wed 4/28)
~General in Town (Mon 4/26)
~Earth Day Celebrations in Full Swing (Thu 4/22)
~New Work In Artificial Pancreas Development (Fri 4/16)
~NASA Planning To Send Six Astronauts And One Robot Into... (Thu 4/15)
~Cornell University Holds Second Annual "Sick in America... (Tue 4/13)
~Justice Stevens' Retirement Will Pose a Political Chall... (Tue 4/13)
~Tompkins County Travel May Be Affected If US Airways an... (Mon 4/12)
~Trial of former Cornell student continues (Thu 4/8)
~Body of Matthew Zika Recovered (Wed 4/7)
~Moderate Exercise May Promote Healthy Baby Delivery Wei... (Tue 4/6)
~Ithaca Farmers Market to Open Saturday (Fri 4/2)
~Toads and Earthquakes (Thu 4/1) 1 Comment
~Genetic Switches and Vocal Development (Thu 4/1)
~Spring Street Cleaning Notice (Fri 3/19)
~New Exoplanet Found (Thu 3/18)
~Deep Brain Stimulation May Hold Promise For Epilepsy Pa... (Thu 3/18)
~Statement by President David Skorton on Death of Matthe... (Sat 3/13)
