Small Town News

Hackers breach Eastern Washington University records

---

University officials to assist individuals in protecting personal information from credit fraud after computer system compromised

Eastern Washington University officials believe that hackers who gained access to the university's computer system were more likely looking for a place to hide files rather than downloading personal information about students.

Nevertheless, Eastern has begun the process of notifying up to 130,000 people over the next two weeks that their personal records might be compromised, and provide information on steps they need to take to protect themselves from fraud. After doing cross checks and eliminating duplicate files, letters were scheduled to begin going out on Monday, Jan. 4, with some actually getting to the post office on Thursday, Dec. 31.

"EWU regrets that anyone's personal information may have been subject to unauthorized disclosure," EWU President Dr. Ro-dolfo Arevalo said in a prepared statement. "The university is taking this matter seriously and is committed to mamtaining everyone's privacy. Eastern is continually putting new measures in place to protect personal information and will do everything it can to protect i against further intrusions."

EWU media specialist Dave Meany said the breach was discovered in early to mid-December during a regular systems upgrade by the university's information technology department. The technical nature of the breach provided no evidence leading EWU officials to suspect anyone's personal information had actually been compromised. Meany said this happens a lot to universities and governmental agencies, users with large systems capable of having enough storage space with which to hide files.

"Basically, we're pretty much a target," Meany said.

Further investigation revealed the hacker, or hackers, had installed software on Eastern's system to store and share video files. Meany said that's what led staff to believe the intruders were looking more for a place to hide information rather than trying to access personal files. Still, the university is taking no chances.

"Because names could have been exposed we have to notify as many people as we can," Meany said.

The notification letters inform individuals that records dating back to 1987 may have been compromised, and give the recipient information on steps they can take to protect against fraud, including placing a fraud alert On their credit file. A Web site, www.ewu.edu/infsecurity, has also been set up as has a security hot line at 1-800-615-9381, for more information. The hotline is accessible only during regular business hours Monday through Friday.

]ohn McCallum can be reached at jmac@cheneyfreepress.com.



Copyright 2010 Cheney Free Press, Cheney, Washington. All Rights Reserved. This content, including derivations, may not be stored or distributed in any manner, disseminated, published, broadcast, rewritten or reproduced without express, written consent from SmallTownPapers, Inc.

© 2010 Cheney Free Press Cheney, Washington. All Rights Reserved. This content, including derivations, may not be stored or distributed in any manner, disseminated, published, broadcast, rewritten or reproduced without express, written consent from DAS.

More from Cheney Free Press