Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Security Education Privacy

Viruses Stole City College of S.F. Data For Years 93

Posted by Soulskill from the measuring-failure-in-decades dept.
An anonymous reader sends this quote from an article at the San Francisco Chronicle: "Personal banking information and other data from perhaps tens of thousands of students, faculty and administrators at City College of San Francisco have been stolen in what is being called 'an infestation' of computer viruses with origins in criminal networks in Russia, China and other countries, The Chronicle has learned. At work for more than a decade, the viruses were detected a few days after Thanksgiving, when the college's data security monitoring service detected an unusual pattern of computer traffic, flagging trouble."
This discussion has been archived. No new comments can be posted.

Viruses Stole City College of S.F. Data For Years More

Viruses Stole City College of S.F. Data For Years

Comments Filter:

  • Re:Not surprising (Score:2, Informative)

    by FFOMelchior ( 979131 ) on Saturday January 14, 2012 @03:42PM (#38699750)

    From what I've seen community college IT Tends to be pretty horrible. One of them out here had a server password of "password" and remoting on. Others tend to use a generic password on everything such as Mascot1 or gomascot1

    IT Dunce A: Crap! Someone out there knows our password "gomascot1"!
    IT Dunce B: No worries, I'll go ahead and change it to "gotigers1".
    IT Dunce A: Phew!

  • Re:Missing details (Score:4, Informative)

    by Anonymous Coward on Saturday January 14, 2012 @08:21PM (#38702018)

    I don't know WTF porn sites you guys are visiting, but there are PLENTY of them out there that have no popups, no viruses, and fewer ads than MSNBC. Serioiusly. Porn sites with viruses are NOT porn sites. They are VIRUS sites that use porn to attract virus clickers. Did you learn nothing from Anna Kournikova?

  • Re:Human failure (Score:4, Informative)

    by tlhIngan ( 30335 ) <slashdot.worf@net> on Sunday January 15, 2012 @02:19AM (#38703870)

    After years of explaining this to people, I have come to the conclusion that no matter what people are going to do it. Simply put, if banks allow people to log in to their accounts from random computers, people are going to do so without any regard for security. It is convenient, and the one thing you can expect people to do is something that is convenient.

    It's called Dancing Pigs [wikipedia.org]. A user will most likely pick convenience over security.

    And any bank that prevents logging in from public computers will be laughed out of business - people expect to be able to bank anywhere and everywhere. Even on their cellphones (they can't wait to go home and do it then...).

    No way around it, unfortunately, and educating the user is a pointless exercise because they'll just go back to their old ways.

    Perhaps if the bank issued them special keypad calculators that could compute transaction hashes (for two-factor authorization) things would help. But no.

    And given banks already use Wish It Was Two-Factor [thedailywtf.com], things won't be improving at all.

Slashdot Top Deals

"Ninety percent of baseball is half mental." -- Yogi Berra

Close