Commissioner recommends changes to URegina cybersecurity after hacks

May 28, 2018

The University of Regina has strengthened its cybersecurity safeguards after expelling a student for changing the grades of 31 engineering students, but Saskatchewan’s Information and Privacy Commissioner would like to see more changes, the Regina Leader-Post states. A report issued by Commissioner Ronald Kruzeniski concluded that the university responded to the breach appropriately, but also recommended a minimum number of assigned PIN characters, random audits of the mark entry system, and mandatory privacy training for employees. URegina, in an internal report, stated that the breach “resulted from the utilization of weak passwords, and failure of impacted faculty members to change password from the default.” Saskatoon StarPhoenix (Leader-Post)