On September 17, 2020, Northland Pioneer College was notified by law enforcement that the College may have experienced a cyber security incident related to a software patch for a computer system device. This incident involved a software vulnerability which allowed an external party to gain access to usernames and passwords of approximately 3,400 College students and staff.
The College has fixed the software vulnerability and removed the access point of the external party so that no additional data can be accessed. The College sent all students and employees instructions on changing passwords to avoid any ability for the external party to use the information obtained. To date, the College has not found any misuse of the stolen information and believes that since this intrusion occurred many months ago and passwords are now changed, no misuse is likely to occur. The College is conducting additional forensic analyses to ensure that there was no further intrusion into the system or access to other data. The College will provide you with additional information via postal letter if it is discovered that data belonging to you was accessed.
Please be assured that we are working to address this incident with College administrators, data privacy counsel and forensic investigators. NPC is making appropriate notifications to affected persons under the applicable data breach statutes and has also notified the Internal Revenue Service, Federal Trade Commission, law enforcement, and certain Attorneys General to report this incident. We are also reviewing our internal procedures to implement additional safeguards to protect confidential employee and student information.
To help protect the personal identity of those affected, we are offering a complimentary one-year membership of Experian’s® IdentityWorksSM. This product provides members with superior identity detection and resolution of identity theft. Information on how to take advantage of this offer is contained in the letter mailed to those effected by this cyber security incident.
The College apologizes for the inconvenience caused by this incident. We encourage those affected by this security incident to take advantage of the information outlined in the letter and utilize the Experian creditor monitoring.
- Should you have questions or concerns regarding this matter, please contact Maderia Ellison, Vice President for Administrative Services at firstname.lastname@example.org.