A web server set up by an enterprising student for a conference in 2004 and then forgotten about has left the University of Greenwich nursing a £120,000 ($160,000) fine from Britain's Information Commissioner (ICO).
Forgetting about a web server isn't generally a good idea, but this was a particularly dangerous oversight because it had been linked to a database containing the personal data of 19,500 University staff, students, alumni, and conference attendees.
The data also included more intimate personal data of 3,500 people covering learning difficulties, staff sickness, food allergies, and extenuating circumstances put forward by students during their studies.
You can probably guess where this is heading – eventually cybercriminals chanced upon the forgotten server and did their worst.
-- submitted from IRC
(Score: 4, Insightful) by bob_super on Friday May 25 2018, @05:28PM
> Site forgotten for 12 years...
What's the uptime of your latest-fancy-framework-with-blank-space atrocity, bitches ?