Click here to receive your FREE subscription to Campus Technology
News
Moodle Hacked at Oregon College
3/14/2008
Umpqua Community College in Winchester, OR announced in February that its Moodle course management system had been hacked earlier in the year, potentially exposing student information. According to a statement from the college, there was no evidence that personal records had been affected. The school also noted that the IT department knew how the system had been compromised and had taken steps to address the security vulnerabilities, which included shutting Moodle down temporarily.Now all users of the college's applications--which include Angel LMS from Angel Learning, Banner from Sungard Higher Education, and the school's portal--must also set up new PINs to prevent the misuse of any data collected during the Moodle breach.
According to an article in The News-Review, a Winchester newspaper, the college became aware of the breach when the system slowed down. An IT investigation uncovered a message from the hacker that had been planted in the system. That same examination revealed that user account information--including names, passwords, and demographic details--had been stored in the software.
The campus had been a long-time user of the open source application, which was being supported by an external service provider. On the Moodle system, students received assignments, completed and turned in course work, and communicated with their instructors.
The school had migrated to Angel in 2007 but implemented Moodle internally at the same time in order to support its nursing program, which wasn't ready to move to a new platform. It was that installation that had been run without safeguards and that lacked a critical security patch, according to The News-Review.
Other instructors outside of nursing were also continuing with their use of Moodle. When IT shut down the internal deployment of Moodle, several professors said they'd be willing to cover the expense of moving the installation to an outside firm that could host the software. The college chose to pay for a similar hosting service but has assigned a task force to decide whether Moodle will continue being used in the future.
Dian Schaffhauser is a writer who covers technology and business. Send your higher education technology news to her at dian@dischaffhauser.com.
Cite this Site
copy text (above) for proper citation
Recommended Reading
- Moodle Gets SCORM Improvements, Security Fixes
New versions of Moodle have been released, bringing the most recent stable build to 1.9.3. The latest round of updates includes a number of bug fixes and security enhancements, as well as improvements to the SCORM module.
- Free 'Morro' Antivirus To Replace Microsoft OneCare
Microsoft is rolling out a free antivirus software program for consumers that will compete with products made by Symantec and McAfee. Code-named "Morro," the AV app is expected to be available by the end of 2009.
- Microsoft Demos New SQL Server Features at PASS
Microsoft Wednesday previewed the ability to centrally manage applications and resources in the planned upgrade of SQL Server, code-named "Kilimanjaro."
- Microsoft Unveils Exchange and SharePoint as Services
Microsoft exec Stephen Elop on Monday announced two hosted solutions from Microsoft--Exchange Online and SharePoint Online--which are now available to organizations of all sizes in the United States. The software, paid for by annual subscriptions, is hosted on Microsoft's servers and supported by Microsoft's channel partners.
- 6 Ways Not To Become Rote Using Instructional Technology
There are, in my experience, six strategies to consider with any use of technology that will guard against rote use of technology and facilitate critical analysis of teaching and learning effectiveness. In this article, I'll share with you the checklist I work with and encourage others to work with in learning about and using new technology.
- Bringing Student Web "Stuff" to Campus Enterprise Systems
How can an institution incorporate Web 2.0 learning opportunities for students, and evidence of learning from those opportunities, into existing campus technologies and processes? PlugJam is providing part of the answer.
