Incident Report





  1. Is personal data about me still viewable by unauthorized persons?
    • NO! Unauthorized access to the sensitive data was disabled by 9:00pm on Monday, January 29, 2007. This data is believed to have been first accessible on Monday, January 22, 2007.
       
  2. What data could have been exposed?
    • Names
    • Social Security Numbers
    • Credit Card Numbers if used to pay for a parking permit for 2004–2005 academic year. Credit card information for 21 individuals is believed to have been viewed. (The University will attempt to call each of these 21 people by Friday, February 16, 2007)
    • Auto Insurance Carrier and Policy Number (if provided to the University for a parking permit in academic year 2004-2005)
    • Automobile owner name, car make and model (if provided to the University for a parking permit in academic year 2004-2005)
    • Student Information (including student judicial records, graduate admissions, and student housing records; at this time there is no indication that grades were accessed)
    • Applicant Data for faculty and administrator jobs posted from 2004 until 2006
       
  3. How many people were affected?
    • The university is mailing approximately 65,000 notifications to current and former faculty, staff and students who may have been impacted. Credit card information for 21 individuals is believed to have been viewed. The University will attempt to call each of these 21 people by Friday, February 16, 2007.
       
  4. Why was data about me exposed and what has the University done to secure this data?
    • The problem is believed to have been caused by a programming error associated with a computer program designed to reduce the internal use of social security numbers on the OneStop system; the University is not believed to have been “hacked”. Unauthorized access to this data was disabled by University IT services within fifteen minutes of this problem being reported. The University remains committed to protecting its data about you and has taken all available measures to secure its network and data about you.
       
  5. Where can I get more information?
    • The University continues to monitor and review this situation and will provide updates online at www.ecu.edu/incident. You may also call 1-877-328-6660 if you have remaining questions.
       
  6. What should I do if I think my personal information has been compromised?
 
 
ecu logo
© 2007 East Carolina University
East Fifth Street | Greenville, NC 27858-4353 USA
Last Updated: 02.09.2007