You are viewing this article in the AnnArbor.com archives. For the latest breaking news and updates in Ann Arbor and the surrounding area, see MLive.com/ann-arbor
Posted on Mon, Sep 6, 2010 : 10:31 a.m.

EMU officials say login information was compromised in security breach

By AnnArbor.com Staff

Eastern Michigan University officials said this morning that a security breach discovered Saturday has compromised login information for students and staff.

But the area breached did not contain Social Security numbers, birth dates, or personal banking information. Walter Kraft, EMU vice president of communications, said in an e-mail to the campus community this morning that EMU has thus far received no reports of issues related to the breach.

The security breach occurred about 11:30 p.m. Friday, according to the e-mail, and was discovered Saturday by the school’s IT staff during routine system monitoring. It happened on a server that controls my.emich passwords and Banner Self-Service PIN codes for students and employees.

Because the area hacked into contains login information, that could allow access to employees' self-service information, including direct deposit information, the e-mail said.

"We consider this unlikely given the complexity of the area breached and the manual process required to access this data, however we are issuing this advisory as a precaution given the possibility," Kraft said in the e-mail. "Employees with direct deposit are advised to monitor their accounts for unusual activity. If unusual activity is discovered, please contact your bank immediately, as well as IT staff."

The IT department and the school's Department of Public Safety are investigating.

Anyone with questions or who suspects unusual activity is asked to contact the Help Desk at helpdesk@emich.edu or at 734-487-2120. IT brought in several additional staff today, and phone calls will be taken from 10 a.m. to 4 p.m.

Comments

dading dont delete me bro

Wed, Sep 8, 2010 : 5:42 a.m.

i'm not impressed w/the login and pw program. i've been a student for 3 years and just changed my pw for the 3 time recently. perhaps because of the breach? the login program is supposed to prompt you for a pw change every 180 days. also, you cannot repeat past pw's. i did and it was accepted...