Incident Response
On July 19th, Oregon State University sent a letter to approximately 21,000 current and former students and employees that some of their information was copied without permission by a contracted vendor who was upgrading software in the cashier’s office.
OSU officials say they don’t believe the information, some of which includes Social Security numbers, was taken with malicious intent, but they are notifying students and employees so that they may monitor their credit reports.
The unauthorized copying of data occurred on three different occasions when software was being updated, and involves records from 1996 through 2009. Records after 2004, however, did not include Social Security Numbers.
Since the discovery, the university has reclaimed the data and severed their association with the vendor.
The program containing the information was used to generate emergency student aid checks or emergency payroll draws from 1996 through 2009.
OSU has opened a hotline for individuals who may have additional questions or concerns at 541-737-1007. You can also ask a question using the online contact form.