Northeastern State University (NSU) acknowledges a data breach in an announcement revealing that some of its data surfaced on the dark web following a cyberattack in May. The university’s IT team detected the cybersecurity incident on May 26, impacting its network. External security experts confirmed the posting of NSU data on the dark web, including images of personal identification such as driver’s licenses, passports, W-9 forms, and social security numbers. NSU is actively collaborating with federal law enforcement and cybersecurity experts to assess the extent of the data compromise and determine next steps for retrieval.
Jennifer Zehnder, Director of NSU’s Communications and Marketing department, emphasizes the university’s commitment to diligently work with authorities in addressing the data breach. The campus community received the announcement via email, advising individuals to monitor their personal data and guard against potential identity theft attempts. NSU plans to notify affected individuals in compliance with federal and state regulations once the assessment determines if their private data was accessed during the cyberattack. The university has provided a list of frequently asked questions and essential security resources online for the campus community to stay informed.
In response to potential phishing attempts, NSU urges community members not to respond to communications claiming to have their personal information and to report such incidents online promptly. This incident highlights the ongoing threat of cyberattacks on educational institutions and the importance of robust cybersecurity measures to safeguard sensitive information. The university’s proactive communication and collaboration with law enforcement underscore the commitment to addressing the breach and ensuring the security of its community’s data.
