George Mason University in Virginia has revealed that a malware intrusion on its travel subsidy website has affected 4,400 students and staff.
The university alerted those affected via letter and stated that the intrusion was detected on July 16. It believes no data was stolen but the Travel Request Service, which was accessed, contained names and social security numbers.
The travel service is an application form for staff and students to apply for travel subsidies.
In response, the university launched an internal investigation and is now offering a one-year membership with online identity protection service ProtectMyID.
“After completing a thorough analysis, the company found no evidence that any information in the TS application was accessed or viewed by an unauthorized individual,” said. “However, the company could not rule out unauthorized access.”
The university hasn’t provided any more information regarding a possible follow up investigation.