University of Michigan: Leaked emails, passwords were from ‘3rd-party data breaches’
Nisa Khan reports:
University of Michigan students got a scare Friday night: warnings circulating on social media about an apparent data breach leaking their U-M email addresses and passwords.
On Saturday, the University of Michigan released a statement saying the information was from older “third-party data breaches, such as Chegg, Zynga, LinkedIn” where users used their student emails to sign up to register.
It may be older data, but to the extent students reused passwords across sites, it should have resulted in some panic and a rush to change passwords on all sites where the password had been used. Students who are not already using a password manager really should explore starting to use one going forward, as well as implementing two-factor (two-step) authentication for important accounts
Read more on Detroit Free Press.