A formal announcement made by the University of Colorado, Boulder division on October 25th this year has clarified that some hackers somehow infiltrated into its database and stole data related to thousands of students and staff members.
Highly placed sources said that the breach was caused because of vulnerability in the software provided by Atlassian Corporation Plc- an Australian firm that is into software development.
Information related to Colorado University Boulder students that include student addresses, studentsā contact numbers, date of births, phone numbers and genders were exposed to hackers. However, the good news is that the social security numbers related to the staff and students were not accessed by the threat actors as they were stored on another secured server.
Atlassian issued an update that the software vulnerability was identified by its security engineers on August 2021 and a fix was issued in the same month.
Staff of the University of Colorado said that the vulnerability could have exposed data related to over 30k students. However, there is no evidence that the information reached the hands of hackers as no threat group yet has come forward to take a claim of a cyber attack or the data breach.
Usually such type of cyber frauds are committed by some state funded hacking groups data bases often lack basic security measures and the data accessed or siphoned from such repositories has a lot of demand in the dark web.
