Princeton 'hacks' Yale admissions site

    Date26 Jul 2002
    CategoryHacks/Cracks
    3497
    Posted ByAnthony Pell
    Yale is threatening to sue Princeton after officials at the rival Ivy League college allegedly hacked into Yale's Web site to gain unauthorised access to its admission decisions. According to Yale Daily News, Princeton staff gained unauthorised access. . . Yale is threatening to sue Princeton after officials at the rival Ivy League college allegedly hacked into Yale's Web site to gain unauthorised access to its admission decisions. According to Yale Daily News, Princeton staff gained unauthorised access to decisions on at least 11 prospective Yale undergraduates in early April through its deeply insecure online admission notification system.

    Using birth dates and social security numbers obtained from Princeton applications, officials were able to find out whether applicants had been successful in gained access to Yale, its alleged. In some case Princeton allegedly found out whether applicants were successful before they received official notification themselves. Yale has pledged to inform affected applicants of the breach.

    Yale Daily News reports that Stephen LeMenager, a dean of admissions at Princeton, explained its actions by saying it was only "innocently" checking if Yale's site was secure.

    Yale learned of the security breach in June after Princeton officials mentioned how easy it was to see their rival's administrations records at Ivy League deans' conference.

    Yale then carried out a security audit which traced back access to admission data to four PCs in Princeton's admissions office. Following the security breach, it is considering introducing PIN numbers to make the site more secure.

    Princeton could have parts of its funding withheld for breaching student confidentiality under provisions within the Family Educational Rights Privacy Act. It may also face criminal charges.

    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"6","type":"x","order":"1","pct":60,"resources":[]},{"id":"88","title":"Should be more technical","votes":"3","type":"x","order":"2","pct":30,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"1","type":"x","order":"3","pct":10,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.