San Francisco college was infested with viruses for greater than ten years

An 'infestation' of viruses existed for greater than a decade on the City College of San Francisco.

According to a report by the San Francisco Chronicle, the viruses were detected at Thanksgiving last year and probably harvested personal banking information and other data in terms of students, the college and administrators.

It claimed that the issue was contained in one computer lab, which CTO David Hotchkiss immediately shut down and reported it to the board.

Hotchkiss and his team discovered that since 1999, at the least seven viruses would begin ‘work' at around 10pm, trolling the varsity networks and transmitting data to sites in Russia, China and as a minimum eight other countries, including Iran and the U.S. itself.

Servers and desktops has been infected around the college's administrative, instructional and wireless networks, and Hotchkiss warned it's likely that PCs belonging to anyone who used a Flash drive in past times decade to hold information home also are affected. However, he said the server with the medical information of scholars and employees seemed to be virus-free.

Last year, McAfee revealed details of prolonged infections in its ‘Shady RAT' report. Speaking in this news, Raj Samani, EMEA CTO at McAfee, said that many years ago he had visited a corporation that had no firewalls and public IP addresses without security, which have been "riddled with malware".

“In the top I rebuilt the network, but that was more to do with low-hanging fruit than intellectual property theft. In the event you put a working laptop or computer without a protection on it then it is just a question of time,” he said.

“All malware is noise, but when you don't have security you may be infected.”

California state law requires that cyber crime victims be notified when personal information have been stolen. Hotchkiss was quoted as telling three college trustees that "we may never know the entire extent of the wear and tear and the way many lives had been suffering from this". He said: “These viruses are shining a lightweight on years of [security] neglect.”

Hotchkiss said he began the job in July 2010 and was astonished at how weak the college's desktops were, with officials doing little to offer protection to against cyber attacks over time.

The Chronicle claimed that the faculty has poor network design, old equipment, a "Draconian system" for agreeing new policies and little money available for brand new, virus-resistant technology.

Hotchkiss also claimed that some college leaders were technophobic, while tens of millions of bucks were spent during the last ten years on consultants, who didn't secure the systems and lacked knowledge of even basic virus protections.