Profile of an inside job -- University employee charged with hacking PeopleSoft app

Profile of an inside job -- University employee charged with hacking PeopleSoft app

by Robert McMillan, Security Blanket

Fri, 2007-11-02 23:37

Topic(s): Business Continuity

Two California State University, Fresno, students are facing 20 years in prison and $250,000 in fines after allegedly hacking into the school's PeopleSoft system and changing their grades.

The recently unsealed indictment in this case provides the classic outline of an insider job. A help desk employee leverages his position to obtain administrative privileges from a supervisor's account. Using these rights they got usernames and passwords of the school's registrar and other officials and then changed their grades.

--Robert McMillan

Attachment	Size
Escalera-indictment.pdf	329.11 KB

» read more from Robert McMillan | post a comment

Post a comment

VIRTUAL CONFERENCE

Data Center Directions Virtual Conference

Attend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WEBCAST

The Surest Path to Effective and Efficient Compliance

In this webcast, we explore why and how — with best practices, practical tips and solutions that work — to ease your compliance challenge.

» View the webcast

Sponsored Links

Simplify your data center with Juniper Networks. View the webcast

Meeting the Challenge of Securing Endpoints by Unifying Essential Components in a Single Agent

E-LOAN Maintains Reputation as a Privacy Leader with Symantec

Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands

Prudential Financial Protects its Brand with Symantec

Envision Identity-Based Access Control for the Datacenter

Digital Identity Protection and Data Security Get Personal

Welcome to the age of Service-Oriented Security (SOS)

Enabling Compliance with Converged Mainframe Security and Storage

The Case for Business Software Assurance ~ Securing Your Applications

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Earn IS Security Credentials From Villanova - 100% Online

Rolling the dice with your security? Take the Self-Assessment Test now

7 Requirements of Data Loss Prevention

Information Security: Data Drains and How to Prevent Loss

How Are Open Source Development Communities Embracing Security Best Practices?

IDC Defines an Identity and Access Management Submarket

Using Likewise to Comply with PCI Data Security Standard

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

Solving Online Credit Fraud Using Device Reputation

Understanding Data Location is Imperative for Data Loss Prevention