Cyber Security Virus Attack

Security Incident – Cyber Security Virus Attack

Information regarding the security incident

On the morning of Friday, April 21, Truman Information Technology Services (ITS) found evidence of what appeared to be virus on the University network. In an effort to mitigate potential spread, all Truman-issued Windows-based devices and services were powered down and remained inactive, along with the campus network, while ITS responded to the incident. During this time, the University also engaged a firm of outside experts, resulting in a cybersecurity resource dispatched to be onsite throughout the week to help resolve the issue.

ITS promptly alerted law enforcement at the time of the incident and it was verified as a form of malware. ITS worked with agents from FBI field offices in Kirksville, Kansas City and St. Louis, as well as the Department of Homeland Security, on solutions.

On Monday, April 24, ITS conducted preliminary assessments of most primary campus workstations at risk for this particular form of malware and began installing a security patch. By Tuesday, April 25, some network services were brought back online. Additional services were restored throughout the week, culminating with the resumption of email service, Friday, April 28.

What happened?

A cyber security virus attack on the campus network.

What information was involved?

It is not believed any of Truman’s enterprise systems with personally identifiable information were accessed. The University is continuing to monitor and assess what personally identifiable information, if any, may have been accessible in other parts of the network.

What is being done now?

A new security tool was implemented to halt the spread of the virus, and servers/systems were remediated and in some cases rebuilt.  The University will continue to monitor the campus network.

While there is currently no evidence personally identifiable information was taken, out of an abundance of caution, Truman is providing the opportunity to enroll in identity theft protection free of charge.

Please be assured we remain committed to protecting personal information.  We are working hard to limit the impact of this incident on our Truman community.

Additional information will be released at https://idinfo.truman.edu 

What can you do?

You can enroll in identity theft protection free of charge.

If you choose not to enroll in this coverage, the Federal Trade Commission (FTC) recommends that you at least place a free fraud alert on your credit file.  A fraud alert tells creditors to contact you before they open any new accounts or changes your existing accounts.  You can find out how to do this, as well as other helpful information, by reading through the Frequently Asked Questions on this website.

For additional information about identity theft, visit http://www.consumer.gov/idtheft or call toll free 877-ID-THEFT (877 438 4338); TTY: 866 653 4261.