14 DAY TRIAL // The names, addresses, employee identification numbers (UD IDs), and social security numbers of 72,000 current and former employees, including student employees, have been stolen from the systems of the University of Delaware.
According to the Delaware Online, the hackers leveraged a vulnerability in Apache Struts 2, the framework designed for the development of Java web applications.
The university has called in both the FBI and IT security firm Mandiant to investigate the breach. In addition, Kroll Advisory Solutions has been contracted to provide free credit monitoring services to impacted individuals.
The University of Delaware is warning affected individuals regarding phishing attacks that might leverage the unfortunate event.
“The University will not contact you and ask to confirm any of your personal information. If an unknown person contacts you and claims that he or she can help you if you would just confirm your personal information, do not surrender any information,” the university stated.