Tag Archive for forensics hacking boston college

Confess that you have suffered a security breach and ask for forgiveness

This is what Boston College did in 2005 when it suffered a data breach. The full story including the details of the forensics and the team they had to put in place is presented in a Network World Article. This team included both legal and PR people as the 100,000 records of Alumni was affected. It turned out that it a rogue server in a utility closet was hacked. Boston College maintains that ethically they were obliged to tell the affected individuals. Even though the actual database wasn’t compromised a series of scratch files for bulk mailing had been.
What was interesting with regards to informing them was that they chose the traditional letter in the post signed by management option. They felt that this approach worked and helped to regain trust.
This example should server to highlight that customers needs should be placed first.