{"id":501,"date":"2019-01-18T16:36:49","date_gmt":"2019-01-18T21:36:49","guid":{"rendered":"http:\/\/pages.vassar.edu\/catchoftheday\/?p=501"},"modified":"2019-01-18T17:03:35","modified_gmt":"2019-01-18T22:03:35","slug":"news-collection-1-data-breach","status":"publish","type":"post","link":"https:\/\/pages.vassar.edu\/catchoftheday\/news-collection-1-data-breach\/","title":{"rendered":"NEWS: “Collection #1” Data Breach"},"content":{"rendered":"

On January 17th, 2019, the media began reporting on a large collection of breached data, known as \u201cCollection #1\u201d. \u00a0This collection contains millions of email addresses and passwords and was posted publicly on the Internet.<\/span><\/p>\n

The data was discovered by a security researcher named Troy Hunt. \u00a0He posted a description of the data on his blog at <\/span>The 773 Million Record “Collection #1” Data Breach<\/span><\/a>. \u00a0<\/span>It is important to note that the breached data is not recent and that the information is limited to email addresses and passwords (i.e., no credit card information, health records or social security numbers). <\/b><\/p>\n

We do not believe this data contains any legitimate login or password information for accessing Vassar business systems. \u00a0<\/span><\/i>However, your Vassar email address may appear in the data collection when you used this email address to sign up for a third-party service.<\/span><\/p>\n

What should I do?<\/b><\/p>\n

    \n
  1. Use strong passwords – use more characters in your password to make them harder to guess<\/span><\/li>\n
  2. Use different passwords – make sure you use different passwords for different sites. \u00a0Never use your Vassar password for any service outside of Vassar College. That way, if a third-party site is breached, that password can\u2019t be used to access Vassar data. \u00a0A password manager can help you with good password habits. Vassar offers LastPass Premium for free to all active community members. Find out more at\u00a0https:\/\/servicedesk.vassar.edu\/catalog_items\/751530-password-management\/service_requests\/new<\/a><\/span><\/li>\n
  3. Check your email addresses for breaches – \u00a0the website <\/span>https:\/\/haveibeenpwned.com\/<\/span><\/a> will tell you if your information is included in the \u201cCollection #1\u201d breach or any others. \u00a0<\/span>Vassar requires password changes once every year.<\/span><\/i>\u00a0 This means the risk of your new password being known is low.\u00a0 However, you should change older passwords on other websites if your email address does appear in the breach information.<\/span><\/li>\n
  4. Check your password – \u00a0you can also see if your current or new passwords have appeared in any data breaches at <\/span>https:\/\/haveibeenpwned.com\/Passwords\u00a0<\/span><\/a><\/li>\n
  5. Enable Multi-Factor Authentication – Vassar offers Duo to protect many services, including Google Apps, Moodle, Workday, and Banner. \u00a0Learn more at https:\/\/servicedesk.vassar.edu\/solutions\/571021-vassarone-setting-up-multi-factor-authentication-with-duo<\/a>\u00a0 For your personal accounts, enable it wherever it is offered, especially for banking websites.<\/span><\/li>\n<\/ol>\n

    If you have questions or concerns about this incident or any other Information Security topic, please send an email to infosecurity@vassar.edu<\/a>.\u00a0 Always report suspicious emails to\u00a0catchoftheday@vassar.edu<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

    On January 17th, 2019, the media began reporting on a large collection of breached data, known as \u201cCollection #1\u201d. \u00a0This collection contains millions of email addresses and passwords and was posted publicly on the Internet. The data was discovered by a security researcher named Troy Hunt. \u00a0He posted a description of the data on his … Continue reading NEWS: “Collection #1” Data Breach<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":8,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[29],"tags":[],"class_list":["post-501","post","type-post","status-publish","format-standard","hentry","category-news"],"_links":{"self":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/501","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/comments?post=501"}],"version-history":[{"count":2,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/501\/revisions"}],"predecessor-version":[{"id":503,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/501\/revisions\/503"}],"wp:attachment":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/media?parent=501"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/categories?post=501"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/tags?post=501"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}