NullCrew said that it gained access to a Yale database containing the personal data; however, it only published the user names and passwords, according to a report by Softpedia.
“This release merely had a reason other than to prove that nothing is secure. In fact, the governmental and educational sites are the least secure in the experience we've had with .edu and .gov websites”, the hackers wrote next to the released information.
Softpedia said it contacted Yale’s webmaster and security department for clarification regarding the breach, but had not received a response by press time.
In August last year, Yale was caught red faced when it admitted that it had placed the names and social security numbers of 43,000 faculty, staff, students, and alumni on a server that was exposed to the Google search engine for 10 months. And in February of that year, the Yale Emergency Operations Team reportedly placed confidential documents about its security plans and procedures on an unsecured server.