Indiana University says 146,000 students' personal data exposed to webcrawlers

Stefanie Botelho's picture
Friday, February 28, 2014

Files including students' names, addresses and Social Security numbers -- stored in an unsecure location -- were accessed three times by automated data-mining applications, which are used to improve Web searches, the university said Tuesday.

No servers or systems were compromised, and the information "was not downloaded by an unauthorized individual looking for specific sensitive data," the university said in a news release.

"This is not a case of a targeted attempt to obtain data for illegal purposes, and we believe the chance of sensitive data falling into the wrong hands as a result of this situation is remote," said James Kennedy, the school's associate vice president for university student services and systems. "At the same time, we have moved quickly to secure the data and are conducting a thorough investigation into our information handling process to ensure that this doesn't happen again."

Read more »