“Hackers Breach College-Applicant Databases, Seek Ransom,” The Wall Street Journal, March 8, 2019. Hackers seek ransom not from the college who held the information, but from the students who provided it.
Who’s responsible for the protection of information a student provides to a college in the application process? [This article appeared before the college application cheating scandal broke. Ed.] Leaving aside the question of value, what obligations does the college have with respect to an applicant’s information? Or is there a User Agreement? And who reset the passwords?