Quick Facts

• Date: 12/4/2009
• Institution: University of Nebraska Lincoln
• Type of Incident: Penetration
• Number Affected: 4,000
• Source: DataLossDB.org
• Abstract Source: The Doings Clarendon Hills

Abstract
The University of Nebraska Lincoln began notifying high school graduates after discovering a security breach involving a computer containing personal information. The server, used as part of a student the university was conducting on the practices of school districts and standardized test performances, contained the names, Social Security numbers and ACT test score information on 4,000 high school graduates between 2002 and 2005. The information was gathered from the ACT organization with the permission of the Hinsdale High School District 86, Glenbard District 87 and schools in South Sioux City. An investigation into the incident discovered the computer was not adequately secured which allowed unauthorized external access to the computer and the information. In the letters sent to the 4,000 individuals, the university is offering one year of LifeLock identity theft protection.