#Yale Daily News RSS Yale Daily News Updated: Sunday, July 6, 2008 at 1:37pm * News + University News + Features + City News + Sci/Tech News * Sports + Sports General + Sports Opinion * Opinion + The News' Views + Staff Columns + Guest Columns + Letters + Corrections * Scene + Scene Cover + This Week + Theater + Music + Film + Performance + TV + Book + Art + Scenic Views + Living + Interview * Calendar * Advertising + Newspaper Advertising + Online + Legal Information + Terms & Conditions * About Us + Online + Submissions + A Day in the Life * Multimedia * Magazine * Most Popular ____________________ (Submit) Search The News will resume publication in August. Check back for online updates. * Get the Yale Daily News Delivered to You * Facebook App * Sign In * Register IFRAME: a19829c3 A A A Computers containing 10,000 SSNs are stolen Students, staff and alumni are at risk of identity theft * Print * Email * Write the Editor * Share + Digg + Facebook + Newsvine + Reddit Steven Siegel Staff Reporter Published Wednesday, August 8, 2007 Your Name ____________________ Your Email ____________________ Friend's Name ____________________ Friend's Email ____________________ Message ____________________________________________________________ ____________________________________________________________ ____________________________________________________________ ____________________________________________________________ (Submit) Submit Close Social Security numbers for over 10,000 current and former students, faculty and staff were compromised last month following the theft of two University computers, officials said Tuesday. The computers were stolen from the Yale College Dean’s Office on July 17, in only the latest in a series of data security breaches that have plagued universities nationwide. The computers were password-protected, and were probably stolen to be sold rather than for the data stored on them, University officials said. Yale has sent letters to the individuals whose personal information may now be at risk. A review of back-up tapes after the theft found files on the two computers that included names and Social Security numbers for approximately 10,000 current and former students and about 200 current and former faculty and staff members, but no financial account information. So far, none of the contacted individuals has reported any misuse of the lost data, Yale spokesman Tom Conroy said. “The University does not believe that this incident presents a significant danger of identity theft because the crime was almost certainly aimed at obtaining hardware for sale — not at exploiting the data that were on the computers,” the University said in a statement, adding that purchasers of stolen computers usually wipe the hard drives so as to hide their origin prior to resale. The University sent letters to the affected individuals recommending that they check bank statements and credit reports, and set up a team to answer questions about the breach. The lost files had not been maintained for any purpose, Conroy said, but were overlooked in the University’s efforts at reducing the amount of personal information it holds. Administrators are taking steps to ensure that any remaining files containing Social Security numbers are either eliminated or encrypted, the statement said. Yale is far from the first university to have private data compromised. Of the more than 200 major data breaches tracked by the Privacy Rights Clearinghouse so far this year, about 60 have occurred at educational institutions. The recent computer thefts at the University were not on the Clearinghouse list as of Tuesday night. Physically losing data stored on a computer is relatively uncommon for universities in comparison to other large organizations, according to Randy Marchany, director of the IT security laboratory at Virginia Polytechnic Institute and State University. Based on information he received from the California Office of Privacy Protection, nearly half of all data losses at universities reported to the office in 2005 were due to compromised servers, while losses at non-educational institutions were primarily due to lost laptops — only 11 percent of their breaches came from compromised systems. In an interview with the News last February, Marchany said the difference was most likely due to better staff training at universities so employees know not to leave unencrypted sensitive information on their laptops. Though the rising tide of data breaches had not yet reached the University, Yale officials expressed concern in February about the risk of losing private information. Chief Information Officer Philip Long said Yale’s strategy to minimize that risk was to collect less personal information than the University had in the past. Yale no longer uses Social Security numbers to identify students, having replaced them with the homegrown University Personal Identifier system. Long declined to comment on the breach Monday night. * Post a Comment * Read Other Articles by Steven Siegel Subscribe to the Daily Headlines E-mail ____________________________________ Subscribe Related Tags * Crime * Technology From the Archives * From the digital archives Computers play with students games VIEW FROM THE HILL Computers From the Yale Daily News' November 29, 1979 issue. * Browse the November 29, 1979 issue Related Articles * NHPD’s White gets 38 months Former narcotics cop Billy White gets 38 months for taking bribes and embezzlement.... * Break-in, assault in East Rock home A 55-year-old woman was brutally assaulted by three males in a home invasion at the East Rock residence of a Yale adjunct professor late Tuesday night.... * [th_481172b7aaac6_20080424Carvalhocommunitydev012ONLINE.jpg]DeStefano: Crime, education priorities Echoing the concerns and priorities he has laid out in previous public forums this year, DeStefano highlighted the need to focus on crime reduction, schools and securing state...... Contribute: Write a Letter to the Editor Featured Comment ““It’s not moral to trample on the backs of hundreds” to achieve personal success, Mamis...” Jonathan T. (Unregistered User) 4:46pm on March 7, 2008 More Comments IFRAME: 336293025 Most Popular Viewed * In twist to decade-old scandal, Lasaga's victim sues Yale * Jovin murder investigation takes new twist * University nears decision on architect for new colleges * Education Dept. expands investigation into Princeton's admissions procedures * Shvarts to present new piece at Tate Modern * Officials break ground on planned 3.2-acre health facility * Hamilton confirmed as Oxford vice-chancellor * For w. crew, NCAA championship was more than victory, it was sweet revenge * City may keep names of ID-card holders private, FOIC rules * Casey at the Bat: Only half of the American story Emailed * Shvarts to present new piece at Tate Modern * University nears decision on architect for new colleges * Jovin murder investigation takes new twist * Hamilton confirmed as Oxford vice-chancellor * For w. crew, NCAA championship was more than victory, it was sweet revenge * City may keep names of ID-card holders private, FOIC rules * In twist to decade-old scandal, Lasaga's victim sues Yale * Education Dept. expands investigation into Princeton's admissions procedures * Officials break ground on planned 3.2-acre health facility * Casey at the Bat: Only half of the American story Commented * University nears decision on architect for new colleges * Education Dept. expands investigation into Princeton's admissions procedures * In twist to decade-old scandal, Lasaga's victim sues Yale * Shvarts to present new piece at Tate Modern * Jovin murder investigation takes new twist * Officials break ground on planned 3.2-acre health facility * Casey at the Bat: Only half of the American story * For w. crew, NCAA championship was more than victory, it was sweet revenge * Hamilton confirmed as Oxford vice-chancellor * City may keep names of ID-card holders private, FOIC rules [updatecount.php?nocache=1215656727.34&table=articles&field=hitcount&id=2109 3] * Contact Us * Site Map * RSS * Books * Alumni * Rights & Permissions * Links Quantcast