Western Connecticut Uncovers Security Hole; 234,000 Have Data Exposed

  • By Dian Schaffhauser
  • 12/11/12

Western Connecticut State University has begun the arduous process of notifying its campus community by mail about a data exposure that lasted for more than three years. The challenge is compounded by the fact that a number of those affected have never had any direct relationship with the campus. Administrators said they didn't believe that anybody's personal information was accessed. However, the university is offering up to two years of free identity protection services to those who might be affected.

According to information issued in late November, a storage system vulnerability existed from April 2009 to September 2012, potentially exposing information that included Social Security numbers and financial account information for about 234,000 people. The records involved had been collected over a 13-year period and included students, their families, and others with a campus affiliation. It also included the data of high school students whose SAT scores had been compiled into marketing lists rented by the university, whether or not those students had ever contacted the university.

When the exposure came to light in September, the university communicated with its Board of Regents Information Security & Policy Office to conduct an investigation of the incident in order to determine what had happened and how it would affect those whose data was maintained in the affected storage system. The university also contacted the state Office of the Attorney General for help in determining how to proceed. Following the investigation, the university began sending notices of the exposure to affected people.

"We are disappointed that the potential existed to have these records exposed but we will do everything we can to protect our students, their families and others with whom we have worked," said President James Schmotter. "The steps we are taking and the solutions we are offering to every one of those affected are designed to address any problems this situation may have caused."

Western Connecticut U has set up a hotline to answer calls and also "dramatically increased its information protection capacity with new layers of protection," the institution stated in a frequently asked questions page.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • SXSW EDU

    Explore the Future of AI in Higher Ed at SXSW EDU 2025

    This March 3-6 in Austin, TX, the SXSW EDU Conference & Festival celebrates its 15th year of exploring education's most critical issues and providing a forum for creativity, innovation, and expression.

  • man working on laptop outdoors

    Digital Leadership Must-Haves for 2025: A CDO's Picks

    Now that he's more than a year and a half into his chief digital officer role at NJIT, we've asked Ed Wozencroft to reflect on his areas of concentration: What work must digital leaders "own" in 2025?

  • From Fire TV to Signage Stick: University of Utah's Digital Signage Evolution

    Jake Sorensen, who oversees sponsorship and advertising and Student Media in Auxiliary Business Development at the University of Utah, has navigated the digital signage landscape for nearly 15 years. He was managing hundreds of devices on campus that were incompatible with digital signage requirements and needed a solution that was reliable and lowered labor costs. The Amazon Signage Stick, specifically engineered for digital signage applications, gave him the stability and design functionality the University of Utah needed, along with the assurance of long-term support.

  • digital artwork of glowing, interconnected neural-like shapes on a gradient background of deep blue and vibrant purple

    Google Announces Upgrade to Flagship Gemini AI Platform, Enhancing Multimodal Capabilities

    Google has launched Gemini 2.0, designed to empower enterprise users and developers with advanced multimodal capabilities and enhanced performance.