Names, addresses, SSNs compromised in UD cyber-attack

By Tom Lehman 10:32am, July 30, 2013 - Updated 10:08pm, July 30, 2013
VIDEO: Karl Hassler, the university's associate director of IT systems security discusses the breach of electronic records.
Officials at the University of Delaware have revealed the school suffered a cyber-attack that compromised confidential information of current and former employees.

WDEL's Tom Lehman reports.

Click here to listen

Karl Hassler, the university's associate director of IT systems security, says the names, addresses and social security numbers of more than 72,000 current and former employees--including many student workers--were exposed during the breach.

Hassler says an IT administrator discovered the intrusion last week. The person or group behind the cyber-attack exploited a previously unknown vulnerability in software obtained by the university from a vendor.

"Files containing names and social security numbers have been taken," Hassler says.

Click here to listen

The university is offering free credit monitoring from Kroll Advisory Solutions for anyone whose information has been compromised. Those affected by the breach should receive notification from the school in their electronic and physical mailboxes.

School officials have also posted more information about the incident on the university's website.

The FBI and Mandiant, a computer security firm, are currently investigating the breach.

Hassler says cyberattacks against universities and financial institutions are becoming more common.

"Cyber-attacks are happening as we speak and they're generally much, much smaller in their scope," he says. "This is the first time we've had anything of this magnitude."

Click here to listen

Most Recent Stories