Oops. Auburn University discovered that students’ personal information – names, postal and email addresses, dates of birth, Social Security numbers, and students’ academic information – was exposed on the Internet between September 1, 2014 and March 2, 2015 when they discovered the problem. No financial information, bank account or payment card information was involved.
While the university says it is not aware of any attempted or actual misuse of the information, it is offering those affected two years of Experian ProtectMyID Alert service.
Read their template notification on the California Attorney General’s website, here (pdf).
WHNT reports that in a separate press release, the university indicated that the problem occurred after a broken server was repaired.
The university has also created a web page about the incident. If you keep following links, you’ll learn that based on the results of their investigation to-date, approximately 364,012 individuals may have been affected.