Last Updated on August 5, 2023 by Robert C. Hoopes
Indiana State University (ISU) is closely following a data security breach that has wide-ranging implications for the institution. The breach involves MOVEit Transfer, a popular file transfer software that recently experienced a data breach.
According to several vendors, including the National Student Clearinghouse (NSC) and Pension Benefit Information, LLC (PBI), they were among the victims of the breach. These vendors were using MOVEit Transfer in connection with personal information received from ISU. However, it is important to note that the breach occurred on MOVEit Transfer’s systems and not on ISU’s systems.
NSC, a provider of student data reporting, revealed that an unauthorized party accessed certain files transferred within the Clearinghouse’s MOVEit environment. These files contained personal information from both current and former ISU students. The NSC has already taken steps to address the vulnerability and is collaborating with a third-party vendor and cybersecurity experts to evaluate the impact on ISU.
Similarly, PBI, a vendor for ISU’s employee benefit plan provider TIAA, has also been affected by the breach. The personal information of ISU affiliated individuals, including names, addresses, dates of birth, and Social Security numbers, was exposed.
In response to the breach, PBI is offering affected individuals two years of free credit monitoring through Kroll, LLC. ISU is actively working with vendors to gain a comprehensive understanding of the breach’s scope, and investigations are ongoing.
ISU wants to emphasize that this breach was not a result of any vulnerabilities within their own systems. They want to assure the ISU community that they are committed to providing updates as more information becomes available. Monitor My MBA Career for the latest news on this developing situation.