Baker College has disclosed a data breach after attackers gained entry to its community one 12 months in the past and stole the private, well being, and monetary info of over 53,000 people.
Based in 1858, Baker College is a non-public college in Baldwin Metropolis, Kansas, with almost 2,000 enrolled college students (1,457 undergraduates) and over 300 workers.
The college detected suspicious exercise on its community after a December 2024 outage and located that attackers had entry to its methods from December 2 to 19, stealing delicate paperwork.
“By way of this evaluation, Baker College decided that info which can have been concerned included information associated to these affiliated with Baker College,” it mentioned in a breach notification letter shared on the college’s web site.
“Though the data various by particular person, the data contains title, date of delivery, Driver’s license quantity, monetary account info, medical health insurance info, medical info, passport info, Social Safety quantity, scholar identification quantity, and tax identification quantity.”
In a submitting with the Workplace of the Maine Legal professional Normal, Baker College revealed that the ensuing data breach impacts 53,624 people.
Whereas the college mentioned it discovered no proof that the data was used for fraudulent actions, it’s now providing free credit score monitoring providers to these affected and encourages doubtlessly affected people to often verify their account statements and credit score studies for suspicious exercise.
“The confidentiality, privateness, and security of our Baker neighborhood’s private info is certainly one of our college’s highest priorities,” mentioned Baker College president Jody Fournier. “Our group has been working alongside an exterior group of specialists at a cyber security agency because the incident and has rebuilt certainly one of our major platforms that was compromised through the cyber incident.”
The college has but to share the character of the assault and attribute the incident to a particular cybercrime operation or state-backed risk group.
A number of different U.S. universities have additionally been breached in voice phishing assaults since late October, with Harvard College, Princeton College, and the College of Pennsylvania disclosing that their growth and alumni actions methods have been hacked to steal the private info of scholars, alumni, donors, and employees.
The Clop ransomware gang additionally breached Harvard College and the College of Pennsylvania in a knowledge theft marketing campaign that exploited a zero-day vulnerability of their Oracle E-Enterprise Suite (EBS) monetary platforms to steal delicate private and monetary information belonging to college students, employees, and suppliers.
Damaged IAM is not simply an IT downside – the influence ripples throughout your complete enterprise.
This sensible information covers why conventional IAM practices fail to maintain up with fashionable calls for, examples of what “good” IAM seems to be like, and a easy guidelines for constructing a scalable technique.
