cyber Vulnerability

Michigan State University

Oct 31, 2023 1 min read
Michigan State University

The youthful cybercriminal Mys7erioN declared that he had breached the database of Michigan State University, a US organisation.

The exposed information includes names, logins, phone numbers, published emails, and encrypted passwords, was made public on Pastebin by Mys7erioN as evidence of the hack.

There appears to be an updated user list in one of the tables, gelstaff_mp2016. Additionally, the hacker posted the data—roughly 500 login credentials and 222 personal details—on Pastebin.

The hacker found a SQL injection vulnerability in Michigan State University's systems while browsing many websites.

Source: https://securityaffairs.com/52801/data-breach/michigan-state-university-hacked.html

TPRM report: https://scoringcyber.rankiteo.com/company/michigan-state-university

"id": "mic1115311023",
"linkid": "michigan-state-university",
"type": "Breach",
"date": "10/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Education',
                        'location': 'Michigan, USA',
                        'name': 'Michigan State University',
                        'type': 'Educational Institution'}],
 'attack_vector': 'SQL Injection',
 'data_breach': {'number_of_records_exposed': ['500 login credentials',
                                               '222 personal details'],
                 'type_of_data_compromised': ['names',
                                              'logins',
                                              'phone numbers',
                                              'published emails',
                                              'encrypted passwords']},
 'description': 'The youthful cybercriminal Mys7erioN declared that he had '
                'breached the database of Michigan State University, a US '
                'organisation. The exposed information includes names, logins, '
                'phone numbers, published emails, and encrypted passwords, was '
                'made public on Pastebin by Mys7erioN as evidence of the hack. '
                'There appears to be an updated user list in one of the '
                'tables, gelstaff_mp2016. Additionally, the hacker posted the '
                'data—roughly 500 login credentials and 222 personal '
                'details—on Pastebin. The hacker found a SQL injection '
                "vulnerability in Michigan State University's systems while "
                'browsing many websites.',
 'impact': {'data_compromised': ['names',
                                 'logins',
                                 'phone numbers',
                                 'published emails',
                                 'encrypted passwords']},
 'threat_actor': 'Mys7erioN',
 'title': 'Michigan State University Database Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'SQL Injection'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.