Hackers have managed to gain access to the records of at least 8,500 current and former University of Georgia employees.
The cybercriminals obtained access to the accounts of two employees who worked in “sensitive information technology positions.” From there, the attackers were able to gain access to the details of thousands of employees, including names, social security numbers and other information, UGA Today reports
The university’s representatives have begun investigating the breach on October 1, after they learned that the passwords of two employees were reset by an unknown actor. It was later determined that the intrusion could have occurred as early as September 28.
It’s believed that the hackers might have been able to reset the passwords by guessing the answers to the secret questions set by the targets.
All the affected individuals have been notified and those who request it will benefit from credit monitoring services. The police have been called in to investigate the incident.