4. Michigan State slips up again
This summer, Michigan State officials revealed a second security slip-up, this time a failure to secure the university’s online shop. Anyone who used the shop to buy Spartan gear between Oct. 19 and June 26 probably had their payment information stolen, the university said, after malware embedded into the website went undetected for months. The university estimated that the incident compromised the credit card numbers of 2,600 people. The school didn’t reveal how it had happened, but said its solution was to enforce mandatory “advanced training” for the website’s administrators.