Iowa's Kirkwood Community College recently acknowledged that hackers breached its Web site on March 13, 2013, and accessed application information from February 2006 to March 13, 2013, including applicant names, birthdates, race, contact information and Social Security numbers. No financial data, grades, or financial aid information was stored in the breached system (h/t E Hacking News).
"On March 13, 2013, a staff member of the Information Technology department detected suspicious activity in the web-based admissions application," the college stated in a FAQ. "The activity in the system indicated that an individual may have gained access to the application database. The college immediately took Kirkwood.edu off line until the suspicious activity could be isolated. This was a sophisticated and skilled attack on our system. The breach was shut down within minutes after the suspicious activity was discovered."
Following the breach, the college took down the kirkwood.edu Web site, revoked the unauthorized access, notified local and federal law enforcement, hired a law firm specializing in data breaches and forensic analysis to assist in the investigation, and offered all individuals impacted free identity protection and restoration services.
Anyone who didn't receive a breach notification letter but believes they may be affected is advised to contact firstname.lastname@example.org.