From their press release:
Global University (“Global”) is providing notice to current and former students of a recent event involving the potential exposure of certain personal information. To date, Global has not received any reports that the information has been misused.
What Happened? On February 1, 2018, Global learned of the potential exposure of certain information related to current and former Global students. Global immediately launched an investigation and began working with third-party forensic investigators to confirm the nature and scope of the incident. Through this investigation, Global determined on February 23, 2018, that a database containing information related to current and former Global students was misconfigured and accessible to the Internet from December 31, 2017 to January 31, 2018. On or around March 21, 2018, Global confirmed the personal information that may have been accessible as a result of the misconfiguration and the identities of the individuals relating to this personal information.
What Information Was Involved? The investigation determined the misconfigured database contained personal information including names, Social Security numbers, and for a limited number of individuals, date of birth.
What is Global Doing? Global takes this incident and the security of personal information in its care very seriously. As part of Global’s ongoing commitment to the security of personal information, Global is working to review its existing policies and procedures and to implement additional safeguards to further secure the information in its systems. Global also reported this event to law enforcement and is notifying state regulators, as required.
On May 8, 2018, Global will begin providing notice to individuals potentially impacted by this incident, and will be offering these individuals access to one year of free identity protection services.
Read the full press release here.