Michigan Sate University is confirming that someone breached a database that contains around 400,000 records containing personal information.
The breach happened on November 13.
According to MSU, that information "included names, Social Security numbers, MSU identification numbers, and in some cases, date of birth of some current and former students and employees. It did not contain passwords, financial, academic, contact, gift or health information."
MSU says they have confirmed that 449 of records were accessed, before the records were taken offline within 24 hours of the breach.
MSU is working to notify affected students, alumni, staff and faculty who were affected by the breach.
The website includes the following statement from MSU President Lou Anna K. Simon:
At Michigan State University, we are committed to data and privacy protection. Regrettably, we were recently the target of a criminal act in which unauthorized users gained access to our computer and data systems. Information security is a top priority of our university, and we know the frustration this is causing members of our community.
We have a deep sense of obligation to our MSU family, and we are taking aggressive action to protect any personal information that may have been compromised. Only 449 records were confirmed to be accessed within the larger database to which unauthorized individuals gained access. However, as a precaution, we will provide credit monitoring and ID theft services for any member of our community who may have been impacted by this criminal act. We also will continue to work diligently in our efforts to protect the integrity of our data systems and improve the security of information that is entrusted to us.
MSU is offering 2-years of identity theft protection, fraud recovery, and credit monitoring for free. For enrollment details call 1-855-231-9331 or visit https://msu.allclearid.com.