David Jesse has some more details on an Eastern Michigan University breach reported previously on this blog:
Forty-five Eastern Michigan University students had their names, dates of birth and Social Security numbers provided to a third party by two student employees, the school said.
EMU spokesman Walter Kraft would not say Thursday whether the employees sold the information, or whom it was given to.
In a letter this week to the student body, administrators said the student employees worked in EMU offices where they had access to student records and copied and transmitted personal information on students or their dependents.
The university is not identifying the student workers or the offices they worked in. No criminal charges have been pressed yet.
Read more on Detroit Free Press