[ad_1]
„Pats hacker explains in the forums that these amounts are higher and now we are evaluating, only recently have we received information that not only the names, surnames, gender, personal identification number and place of residence are made public, but also the qualifications and data of student evaluation.
According to him, preliminaries could have leaked around 7 thousand. student data, but the study also looks at a “worst-case scenario,” that is, there is more leaked data.
R.Rainys said that specialists at the center are currently conducting an investigation in order to identify security breaches. Potential system operators were contacted on Friday.
“The Cyber Security Center is investigating a possible cyber incident because the database has been made public. Apparently, it is most likely that there was a cyber incident, hacking or other exploitation of the way malicious people gained access to the database and then they made it public, ”said the director.
He confirmed that it was a LieMSIS database, which could be used by other higher education institutions, but did not comment on the situation in more detail.
“Yes, we are still aware of the disclosure of this part of the database. We work with potential sysadmins. I would not like to reveal the very detailed investigation, because it has just begun,” said the head of the NKSC.
The Vilnius College administration informed the students that data theft may have been committed, through which their personal data may have been leaked.
“We have informed the students about the possible theft of data, we have sent them a letter (…) We are currently working on these matters, and we are working with lawyers”, Dovydas Buslavičius, acting head of public relations department of the university, he told BNS on Saturday.
He added that the data may not have been leaked from the university’s databases, but from the service provider. For its part, the school informed the students that the data included name, surname, personal identification number, address.
For its part, the Bank of Lithuania (LB) points out that having information on the name, surname, personal identification number and address of a person, it would not be possible to obtain consumer credit in the companies that grant these loans. Financial institutions that offer consumer credit must identify a person.
“Providing such data to a consumer credit company would not be enough for the company to ensure that the person whose data is provided applies for consumer credit,” says Jekaterina Govina, director of LB’s Financial Market Supervision Service, at a comment submitted.
Furthermore, he adds, money is often transferred to a person’s account, which can only be accessed by having access to a person’s e-banking or by having access to a person’s payment card.
[ad_2]
