Sent: 2023-07-13
From: EIU
To: Various Recipients
Subject: Impact of Global Security Incident (MoveIT)
Earlier this week many EIU employees were notified by the state's Department of Innovation and Technology (DoIT) that their information had been compromised in a recent security incident. DoIT provides technology resources for many state agencies such as CMS, IDPH, and IDES. DoIT has established a dedicated call center and will provide credit monitoring to any individual affected by this incident.
EIU continues to monitor the impact of a security incident involving hundreds of organizations. According to news reports, the MOVEIt vulnerability has affected millions of people nationwide. It's important to note that EIU does not directly contract with MOVEIt, and our local systems were not compromised in this attack.
While EIU has not been notified of any additional breaches from our third-party vendors, it is possible that additional notices will be received in the future due to the scope of this incident. In the meantime, please refer to the following FAQs for more detailed information.
Where can I learn more about this breach?
DoIT has setup a site to learn more: https://www.illinois.gov/news/press-release.26654.html
Who was impacted by this breach?
While DoIT has not shared the details with the University, it appears many EIU employees were impacted by this breach. If you were impacted, you received a USPS delivered letter delivered the week of July 10th.
Who can I contact if I have questions?
You can contact DoIT directly at 1-833-919-4748. Please have the engagement number from your notification letter ready.
Is this the same breach as the National Student Clearinghouse?
This is a separate incident from the NSC breach that EIU notified campus of earlier this month. Both incidents were the result of the MoveIT vulnerability.
