San Francisco State College of Extended Learning is notifying students that a server housing files with their personal information was compromised on March 25, 2013.
The college learned of the breach on June 11, when it was notified by federal law enforcement that the server had been used by a group not affiliated with SF State. According to law enforcement, the site was one of approximately 500 sites compromised by the same group. Although the college found no evidence that any files containing personal information had been accessed by the intruders, law enforcement informed them that in at least some of the other cases, there was evidence of compromised data.
In a letter dated August 12, Jose L. Galvan, Dean of the college, informed recipients that the personal records on the server included name, Social Security Number and “related information.”
The college arranged with AllClear ID to provide two years of identity theft protection and restoration services at no cost to those affected.