The City College of San Francisco is notifying some students after an employee responded to a phishing scam.
As the college explains in a letter from Jay Field, Chief Technology Officer:
On April 15, 2016, we learned that an employee had responded to a “phishing” email thinking that it was a legitimate request. When we learned of this, we immediately secured the email account, reset passwords and began an investigation of the incident.
We conducted a thorough review of the employee’s e-mail account and confirmed that the emails contained student information and may have included your name, address, Social Security number, and other information contained in your application for financial aid.
Those students being notified have been offered one year of Experian’s ProtectMyID Alert service.
The letter does not state how many students had information in the employee’s email account and there’s no media coverage as yet. This post will be updated when more information becomes available.