East Valley Institute of Technology (EVIT), a career education school, was affected by a cyber incident that compromised more than 48 categories of personally identifiable information (PII) of more than 200,000 individuals, including current and former students, faculty and parents.
East Valley Institute of Technology was targeted, allowing attackers to gain access to the institution’s network. This led to the compromise of the data of 208,717 individuals, including students, teachers and parents. According to EVIT, up to 48 different categories of personal information may have been accessed, but not all of this information was potentially compromised.
Categories of compromised data include: student ID numbers, dates of birth, racial/ethnic data, grades, class schedules, social security numbers, driver’s license data, financial aid information, medical records, patient identification numbers, and more. After discovering the incident, EVIT immediately reported the event to the relevant authorities and implemented a number of measures to ensure the security of its systems.
EVIT reported the incident to the three largest national consumer reporting agencies and the relevant authorities. The school also brought in outside experts to conduct a full investigation into the incident, which was recently completed. According to the results of the investigation, no disclosure of personally identifiable information was found. Also, they will take all necessary measures to increase security and reduce risks. A number of measures have already been implemented, including changing passwords, implementing 24/7 monitoring, deploying anti-threat software and restoring or replacing 19 virtual servers. Victims can benefit from identity theft protection services through IDX, including 12 months of monitoring, $1,000,000 insurance policies and recovery services.