On Wednesday night, May 23, a security breach of NeSIS, the university-wide student information system, was detected. NeSIS contains Social Security numbers and date of birth for all employees. When the initial announcement was made Friday evening, it was unclear that employee data was included.
At this time, we have no direct evidence that this information was downloaded and we have no reports of identity theft stemming from this breach. We are working with an outside security firm to help analyze the level of risk of personal information being misappropriated and to make recommendations for any additional safeguards that are needed.
What you can do now
We recommend that you contact one of the three primary credit reporting agencies to place a free Initial Security Alert (90-day) to your credit report. This can be done online or via phone and will alert you to any attempt to establish or extend credit in your name.
Bank account information for most employees is not stored in the NeSIS database and no credit card data is stored in the database; however, we suggest you monitor your bank accounts carefully and report any suspicious activity to your financial institution immediately. Employees who are in the database in another capacity – as students, parents or alumni, for example – will be notified if they have a bank account associated with their NeSIS account.
Follow updates on the situation and access additional resources, including a video on using fraud alerts, at our website: http://nebraska.edu/security. In addition, you can submit questions and comments regarding this incident at the website. We will monitor these comments and respond to all questions submitted as quickly as possible.
A telephone service center will be instituted in the future to assist employees, students, parents and alumni whose personal information may be at risk. Check the website for information on contacting the service center.
We appreciate your patience as we work through this difficult situation.