💣🐛🕵️‍♂️

University at Buffalo (UB) Security Incident

6/08/2018 2663 days ago Resolved

Incident Overview

Situation Description

The University at Buffalo has established an Information Security Incident Response Plan to address evolving threats to its information systems and data, aiming to protect confidentiality, integrity, and availability.

Event Types

Malware / Destructive Attack Software Vulnerability Exploitation Cyber Espionage

Industry Sector

Education

Geographic Scope

nan

Response Actions

Revised Incident Response Plan

Impact Analysis

Event Types (3 identified)

Malware / Destructive Attack Software Vulnerability Exploitation Cyber Espionage

Financial Impact

$0 USD

Records Affected

Data Types Compromised

PII (Personally Identifiable Information) Intellectual Property

Primary Impacts

Operational Disruption Reputational Damage

Key Decisions Made

The Information Security Office (ISO) is responsible for the plan and its revision, including annual reviews and revisions as needed.; Incidents are classified according to risk (Major, Moderate, Minor) to identify the appropriate response and resources.; Major Risk incidents, defined by specific criteria such as restricted data access or potential for physical harm, require reporting to external agencies.

Technical Analysis

Attack Method

Unknown

Additional Information

Information Security Incident Response Plan If an incident is considered illegal or life threatening, contact the UBPD: 716-645-2222. For suspected or confirmed information security incidents, contact the UBIT Help Center: www.buffalo.edu/ubit/help or 716-645-3542. The term information security incident is used throughout this document. Category: Information Technology Responsible Office: Information Security Office Responsible Executive: Vice President and Chief Information Officer (VPCIO) Date Established: August 6, 2018 Last Updated: March 4, 2020 On this page: Abstract The Information Security Incident Response Plan (plan) identifies and describes incident handling: Roles Responsibilities Procedures To facilitate an appropriate response, the plan guides: Incident handling Analyzing incident-related data Back to Top Intended Audience The plans intended audience are members of the university, including: Leadership so they understand the plan and its alignment with other university processes Staff who may become aware of incidents System administrators with direct involvement in the identification and resolution of security incidents on the systems, data, and applications that they manage Desktop support staff with direct involvement in the identification and resolution of security incidents on the systems, data, and applications that they manage UBIT Help Center Staff Back to Top Incident Response, Urgent and Emergency Contact Information (as of January 06, 2020) UBIT Help Center: 716-645-3542 UBIT Information Security Office: 716-645-6997 VPCIO Office: 716-645-7979 UBIT Organization & Contact Information: http://www.buffalo.edu/ubit/about/our-people.html UB University Police (Emergency): 716-645-2222 (off campus, dial 911) UB University Police (Non-emergency): 716-645-2227 UB Hazardous Materials: 716-829-3301 UB Emergency Information and Alerts: http://emergency.buffalo.edu UB Human Resources: 716-645-7777 UB Student Judiciary (Student Conduct and Advocacy):...

... (truncated for display)

Quick Facts

Company:: University at Buffalo (UB)
Date:: 6/08/2018
Status:: Resolved
Decision Maker:: Vice President and Chief Information Officer (VPCIO)
Position:: VPCIO
Published:: 4/03/2020

Source Information

Original Query

school district ransomware attack "data recovery" "communication plan"

View Original Source

Timeline

Information Published

4/03/2020

Incident Occurred

6/08/2018 (2663 days ago)

Status: Resolved

Estimated resolution based on age

Actions

View Company Profile

Navigation

Quick Stats