Johnson & Wales University (JWU) recently reported a significant data breach to the Attorney General of Maine, disclosing that an unauthorized party had accessed its computer network and potentially compromised sensitive consumer data. The breach reportedly exposed personal information, including names, Social Security numbers, and financial account information of affected individuals. Following an investigation into the incident, the university began sending notification letters to all those impacted by the breach to inform them of the compromised data.
The breach was first detected on July 11, 2024, when JWU’s IT team noticed unusual activity within its network. In response, the university immediately secured its systems and engaged cybersecurity specialists to investigate the incident further. This investigation revealed that, on August 21, 2024, an unauthorized actor had accessed parts of JWU’s IT network and viewed files containing sensitive data. The university took steps to identify the extent of the breach and to determine which individuals’ information was affected.
After confirming the breach, JWU reviewed the compromised files and worked to pinpoint which specific pieces of information were exposed for each individual. While the details of affected data vary by person, many had personal identifiers such as their names, Social Security numbers, and financial information accessed. Recognizing the severity of the data exposure, JWU began issuing data breach notification letters to all impacted parties on September 19, 2024, outlining the specifics of the information compromised.
Johnson & Wales University, based in Providence, Rhode Island, was founded in 1914 and has a well-established presence in higher education, with additional campuses in North Miami, Florida; Denver, Colorado; and Charlotte, North Carolina. With an enrollment of over 7,000 students and more than 1,600 employees, JWU generates approximately $265 million in annual revenue. As the university continues to address the aftermath of the breach, more information may be made available regarding its impact and any further steps JWU may take to strengthen its cybersecurity measures.
Reference:
