The University of South Carolina recently began notifying 34,000 people that their personal data may have been accessed in a breach that took place almost three months ago.
"The latest data breach is the largest of six that have impacted the school since 2006, bringing the total to nearly 81,000 records of USC students and staff that have been exposed," writes SC Magazine's Danielle Walker.
"The latest USC computer intrusion exposed the names, addresses and Social Security numbers of students, staff and researchers at the College of Education dating back to 2005, said Bill Hogue, USC’s vice president for information technology," writes The State's Andrew Shain. "No transcripts were accessed."
"USC is still unsure when the breach happened, but it confirms that it originated from overseas and was discovered on June 6," writes Web Host Industry Review's Justin Lee. "Hogue also maintains that the unversity’s security procedures were followed before the breach."
"However, in contrast to what has become the norm for such intrusions, USC is not offering to foot the bill for credit monitoring services for those potentially affected, a decision that is drawing heat from at least one consumer rights advocate," writes Threatpost's Brian Donohue. "Beth Given of the Privacy Rights Clearing House is urging USC to pay for credit monitoring services to anyone whose information was on the compromised server, called the university’s data-breach track record 'dreadful,' and questioned why the institution waited 11 weeks to go public with the breach and how exactly they are sure that no one’s data was actually accessed."