Security News > 2023 > July > Colorado State University says data breach impacts students, staff

Colorado State University has confirmed that the Clop ransomware operation stole sensitive personal information of current and former students and employees during the recent MOVEit Transfer data-theft attacks.

Colorado State University is a public research university with nearly 28,000 students and 6,000 academic and administrative staff members, operating on an endowment of $558,000,000.

The University informed its students and staff on July 12th, 2023, that the threat actors have gained access to the personal data of staff and students through these attacks.

"Some data about prospective, current, and former CSU students and current and former employees maintained by the affected vendors contains personally identifiable information, which may include first name, middle initial, last name, date of birth, student or employee identification numbers, social security number, and demographic information such as gender, ethnicity, and level and area of education." warned CSU. The University says that the stolen data is from as far back as 2021, possibly earlier, meaning that graduates may have been impacted.

Stony Brook University, the University of Delaware, and the Western University of Health Sciences have posted data breach notices relating to the compromise of TIAA, NSC, and Corebridge Financial.

Hackers steal data of 45,000 New York City students in MOVEit breach.

News URL

https://www.bleepingcomputer.com/news/security/colorado-state-university-says-data-breach-impacts-students-staff/