District Data Breach Leads to Prison Time -- THE Journal

Cybersecurity

District Data Breach Leads to Prison Time

By Dian Schaffhauser
04/13/10

A Washington State man has been sentenced to 10 years in prison after pleading guilty to 31 counts of criminal activity, most related to a school district data breach. Christopher Berge, now 21, was a student at Mountain View High School in Evergreen Public Schools when he "shoulder surfed"--physically observed--a password used by a district employee.

Berge later used the password to gain access to the district's student information system, hosted by the Washington School Information Processing Cooperative (WSIPC). From there, he was able to gain access to the payroll data of another district in the state, Vancouver Public Schools. That data included bank account information, Social Security numbers, and birthdates of 5,000 current and former school district employees, according to documents posted on the Vancouver district's Web site.

Berge attempted to use those details to alter bank account information, create checks, and request and use credit cards. He also attempted to change payroll information within the system but was unsuccessful in those efforts. Berge was arrested in November 2009, according to local newspaper coverage, after attempting to use one of the fake checks at a local store.

The Vancouver district put fraud prevention and resolution services in place for those affected. The cost of those measures--$62,000--was subsequently reimbursed by the cooperative. WSIPC provides IT services to 290 districts and schools in Washington.

The superintendent of the Vancouver district, Steve Webb, asserted in a letter to the community that the district also suffered "damage to our reputation with the public and our employees. Hundreds of hours were spent investigating the extent of the compromised data and developing the plans and procedures to protect staff from further exposure to fraud.... District staff also spent countless hours working with financial institutions, answering employee questions, and preparing internal and external communications. It is impossible to measure lost productivity as employees worried about their financial security and worked to change bank account and payroll information."

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

E-Mail this page

Printable Format

Featured

AI 'Microscope' Reveals the Hidden Mechanics of LLM Thought

Anthropic has introduced new research tools designed to provide a rare glimpse into the hidden reasoning processes of advanced language models — like a "microscope" for AI.
Estonia to Roll Out ChatGPT Edu for all Secondary Schools

In a nationwide artificial intelligence program dubbed "AI Leap 2025," the country of Estonia plans to provide free access to leading AI applications for all secondary school students and teachers. The initiative will launch with a rollout of ChatGPT Edu to 20,000 high school students in grades 10-11 and their 3,000 teachers, beginning Sept. 1.
Discovery Education Announces Accessibility Enhancements for DreamBox Math

Discovery Education has updated DreamBox Math, an online math program for K–8 students to supplement core instruction, to improve accessibility for K–5 students, according to a news release. DreamBox Math provides personalized instruction by adapting to individual learners’ responses and providing an engaging, dynamic learning environment.
Character.AI Rolls Out New Parental Insights Feature Amid Safety Concerns

Chatbot platform Character.AI has introduced a new Parental Insights feature aimed at giving parents a window into their children's activity on the platform. The feature allows users under 18 to share a weekly report of their chatbot interactions directly with a parent's e-mail address.