ATHENS, Ohio - Ohio University is responding vigorously to improve the integrity of its computer network system and increase its level of security. A number of measures have been taken over the last several weeks, including a thorough security audit of the university’s central computer systems.
As part of the completed audit, investigators identified two computers containing pre-existing security holes. The university has closed those breaches and is notifying all individuals who were affected.
The first of these breaches was discovered on a computer that housed IRS 1099 forms for 2,480 vendors and independent contractors for calendar years 2004 and 2005.
The second breach was discovered on a computer that hosted a variety of Web-based forms, including some that processed on-line business transactions. Although this computer was not set up to store personal information, investigators did discover files that contained fragments of personal information, including Social Security numbers. The data is fragmentary and it is not certain if the compromised information can be traced to individuals. Also found on the computer were 12 credit card numbers that were used for event registration.
There is no evidence that any of the information has been misused.
Ohio University has an ongoing commitment to strengthen security of its computer systems. The university continues to work closely with the Federal Bureau of Investigation and take steps to strengthen its systems.
The university has established a Web site at www.ohio.edu/datasecurity/ and hotline, 800-901-2303 or (local calls) 740-566-7448 to provide information to those individuals who have been affected by these problems.
[ 30 ]
Media Contact: Director of Media Relations Jack Jeffery, (740) 597-1793, or Media Relations Coordinator Jessica Stark, (740) 597-29384