Saint Louis University reports data breach impacting students and staff
Learn More
St. Louis University (SLU) has disclosed a data breach that lasted over eight months, exposing personal information of students and staff.
SLU identified suspicious activity involving school email addresses on March 2 and, with the assistance of a forensic investigation firm and an e-discovery firm, determined that unauthorized access to email accounts may have occurred at various times between December 2022 and July 2023.
The following data could potentially have been accessed during the incidents:
- names,
- dates of birth,
- Social Security numbers,
- driver's license numbers,
- passport numbers,
- passwords,
- digital signatures,
- health insurance information,
- medical data
SLU has not detected any evidence of fraud or identity theft resulting from the breach.
The nature of the attack nor the number of affected individuals is not disclosed. But SLU has over 13,000 students per their website.
To address the breach, SLU has taken measures to prevent future incidents and is reviewing its technical safeguards. The university has advised affected individuals to monitor their credit reports, account statements, and benefit statements regularly and report any suspicious activities to law enforcement.
Letters of notification were sent to individuals impacted by the breach, and SLU is actively working to address the situation.
