Indiana University records leaked in data breach

Indiana University (IU) has reported that in a recent data breach, over 248,300 records were exposed.

The breach occurred on July 4 when the records, including full names and email addresses, were posted on a forum known for sharing stolen data.

No details are available as to the nature of the data breach, but the mitigation actions proposed by IU suggest this was a third party data breach.

The university states that the exposed information was already publicly available and classified as public information by Indiana University.

In response to the breach, IU has announced plans to conduct a thorough review of its security measures and work on improving the management of third-party vendor risks to prevent similar leaks in the future.

 IU suggested that if only email addresses are compromised, the primary concern might be an increase in spam emails, but when personal information like credit card numbers and expiration dates are involved, the risk of harm escalates significantly.