<p>309k persons personnel information compromised. Ironic UMD has the only Honors Cybersecurity program in the nation. Go figure. My son has no credit but now he has a Macy's, Home Depot and Target card!</p>
<p>It really stinks. Here is the email from Loh.</p>
<p>MODERATOR’S NOTE: You are not allowed to post email contents, according to the Terms of Service, so I deleted this one.</p>
<p>Are accepted students (18’) data included in the breach?</p>
<p>Oh gosh, I want to be part of that ACES program too…</p>
<p>@Vctory, I am not 100% positive, but if you were accepted to UMD, you should have been issued a UID as well. It says in the email that anyone with a UID had their information stolen, so i would assume students accepted for 2018 also had their information stolen.</p>
<p>How do we know whether or not we were affected</p>
<p>@jibler…unfortunately that’s the problem… I did found this which has some relevant info <a href=“https://www.privacyrights.org/how-to-deal-security-breach”>https://www.privacyrights.org/how-to-deal-security-breach</a> and will have to look into following that advice…</p>
<p>When there was a security breach at Target they offered a free credit monitoring service, so let’s give Maryland a chance to figure out more details. It is definitely worth looking into services like that… </p>
<p>I imagine this will be the hot topic in the ACES class. This will probably take a while to unravel. They just recently found the source of the Targe data breach being tied into a contractor or something like that, so it will probably take a few months to discover the source for this breach also. This just further validates the importance of having a program like ACES - anyone going into this field will be very highly employable. Unfortunately, these breaches happen all the time and are getting more frequent and more sophisticated. Not to be a fatalist, but if your information wasn’t compromised by this breach, it would likely be by another at some point.</p>
<p>I agree with Bonee26 about the irony…</p>
<p>I’m counting on you to join ACES and tell us more details! ;)</p>
<p><a href=“http://www.washingtonpost.com/local/college-park-shady-grove-campuses-affected-by-university-of-maryland-security-breach/2014/02/19/ce438108-99bd-11e3-80ac-63a8ba7f7942_story.html”>http://www.washingtonpost.com/local/college-park-shady-grove-campuses-affected-by-university-of-maryland-security-breach/2014/02/19/ce438108-99bd-11e3-80ac-63a8ba7f7942_story.html</a></p>
<p>If anyone hears of anyone being contacted by UMD and told their info was compromised, I would appreciate hearing that here. If you could also note whether the info compromised belonged to a former, present, or prospective UMD student, that would help.</p>
<p>If UMD offers privacy protection for affected individuals, we want to know why we weren’t offered it–rather than just having to assume that if we hear no more from UMD that means we’re in the clear. UMD needs to clearly and widely announce who’s getting what protection and why.</p>
<p>@jkeil, the email I posted from Loh was sent to my daughter who is a current student there. I assume this to means her info was compromised.</p>
<p>sorry, terpmom, I don’t understand.</p>
<p>as for believing that only the people who rec’d the email were affected by the breach, I doubt very much that at the time of the email UMD had any idea which people had been affected. It may take some time yet. It sounds from recent reports like the hackers went in over night and cloned a partition on a secure hard drive. This might be inside work.</p>
<p>Perhaps I misunderstood your post jkeil. I thought you were asking if anyone had been notified by UMD that their info had been compromised. I was saying yes, my daughter had been notified. We will err on the side of caution and assume that because her info was in the system, that she indeed was affected.</p>
<p>@jkeil - “The breach occurred about 4 a.m. Tuesday, when an outside source gained access to a secure records database that holds information dating to 1998.”
Based on that statement EVERYONE that has attended from 1998 forward has been “affected by the breach” and is therefore “eligible” for free credit monitoring per the article I posted, “Loh said that U-Md. plans to provide free credit monitoring for a year to anyone whose information was compromised.”
Ergo, everyone who attended from 1998 to date has been compromised and will get free credit monitoring for a year. At least, that’s my interpretation. I assume that, like with the Target breach, it will not be automatic, but you have to sign up for the (free) service.</p>
<p>Report that was released today included that students admitted for Fall 2014 were NOT affected. Only current enrolled students!</p>
<p>@AmbitionMission
I mean that’s good for us, but it’s still terrible this happened. </p>
<p>My family uses LifeLock because of things like this. Gives you alerts on everything</p>
<p>could you pls cite that report, AM. Since the stolen database included people who likely were no longer enrolled, I doubt that it was limited to “current enrolled students.”</p>
<p>It actually said anyone (faculty, staff and students) that was assigned a University ID from1998 on</p>
<p><a href=“The University of Maryland | A Preeminent Public Research University”>The University of Maryland | A Preeminent Public Research University;
<p>Yes, it only affects you if you were given a university ID card. So if you just applied and didn’t attend UMD, then you are not affected. As long as you got a Maryland ID card, your info was compromised for the time period stated. </p>
<p>source of info, MTnest, if you would please.</p>