The Herald Sun of Durham, NC is reporting that Professor Bonnie Yankaskas, a professor in the Department of Radiology and principal investigator of the Carolina Mammography Registry, has been demoted from full professor to associate professor, and her salary has been reduced by nearly half. The reason – a server used by the research program was hacked in 2007. The server contained personal data (including Social Security numbers) of more than 100,000 women.
The case is notable in that a senior manager – not the IT or security staff – is being held ultimately responsible, and a very significant penalty is being imposed. Perhaps a case like this can be used to highlight the importance of information security to your own executive staff and managers?
Read the full article on the IEEE Spectrum website.