MOVEit Transfer Data Breach

Lamar Institute of Technology has been notified by the National Student Clearinghouse that information they manage for some of our graduates and students was included in a recent nationwide cybersecurity incident. According to the Clearinghouse, no Social Security numbers were compromised from the LIT files. However, a small number of individual’s names and dates of birth were included. These individuals will be notified directly.

The data breach involves a vulnerability identified with MOVEit Transfer, a file transfer software used by a number of companies. The types of personal information included in the files obtained without permission from the Clearinghouse varied by school and individual. The Institute was notified that Lamar Institute of Technology data included student names. With exception of the students mentioned above, the inclusion of other data types was designated as false by the Clearinghouse.

Most U.S. higher education institutions, as well as a number of K-12 organizations, use the Clearinghouse’s educational reporting, research, data and transcript ordering services. Due to the widespread use of the National Student Clearinghouse, students may receive notifications from other affected organizations. For anyone concerned about this breach, many resources are available to detect and report identity theft at identitytheft.gov. Individuals may request a free annual credit report from any or each of the major credit reporting companies, Equifax, Experian or TransUnion.
 

Information Technology

InCommon Federation: Participant Operational Practices
LIT Standards for Technologies Prohibited by Regulation
MOVEit Transfer Data Breach
Policies