Mapping Your Future: Technology Security Alert issued by Department of Education

Newsroom

Latest Popular Browse Search Newsletters

Technology Security Alert issued by Department of Education

By Catherine Mueller

July 18, 2019

The Department of Education is warning schools about a software vulnerability that enables hackers to create fraudulent student accounts to conduct criminal activity.

In a July 17 Electronic Announcement, the Department said it has obtained information regarding active and ongoing exploitation of a previously identified vulnerability in the Ellucian Banner System. According to the Announcement, the vulnerability only occurs in Ellucian Banner Web Tailor versions 8.8.3, 8.8.4, and 8.9 and Banner Enterprise Identity Services versions 8.3, 8.3.1, 8.3.2, and 8.4.

The Department said in the Announcement that it has identified 62 colleges or universities that have been affected by exploitation of this vulnerability and that those responsible for the attacks may be scanning the Internet looking for other institutions to victimize.

The Electronic Announcement outlines specific steps for those schools using the affected versions of the software.

Department of Education news and regulations