Point Loma Nazarene University discloses breach after employees fall for phishing scheme
Point Loma Nazarene University is notifying an unspecified number of individuals of a security breach that occurred between October 7 and October 20. The breach, involving uanuthorized access to 5 employee email accounts, occurred as a result of successful phishing attempts.
While the investigation into the matter is reportedly ongoing, the external forensics experts informed the university that the following categories of personal information were potentially subject to unauthorized access:
- Social Security number
- Date of birth
- Credit card number and CVV code or expiration date
- User name and password
- Driver’s license number
The university notes that “There is currently no evidence that your information was viewed or removed” and they are “unaware of any actual or attempted misuse of your personal information.” It is not clear from their notification whether the potentially compromised information was student information, employee information, or both.
Those notified were offered a complimentary one-year membership to Experian’s® ProtectMyID® Alert triple bureau.