Arkansas State University-Beebe (ASU-Beebe) is notifying students and employees of a service running on one of its servers – which contained personal information – that could pose a potential breach to the system.
How many victims? Undetermined.
What type of personal information? Undisclosed.
What happened? ASU-Beebe was informed by a third party of a service running on one of its servers – which contained the personal information – that could pose a potential breach to the system.
What was the response? Servers were immediately take offline. An investigation is currently ongoing. Students and employees are being notified of a potential data breach.
Details: ASU-Beebe was informed of the issue on Oct. 21. The servers in question contained scanned documents saved in a proprietary format and did not include an electronic database. The infected server did not contain credit card information. Employees and students are being asked to watch for fraudulent credit card applications because the information that was potentially accessed could be used to apply for a new account.
Quote: “We are currently making all efforts to determine if a security breach has occurred either within ASU-Beebe or with other parties,” Chris Lee, chief information technology officer with ASU-Beebe, wrote in the notification posted to the website. Lee went on to add, “Please know that we are aggressively investigating this matter and that we will continue to provide updates as new information comes to light.”
Source: asub.edu, “Notice of Potential Data Breach,” Oct. 27, 2014.