The University of Missouri System is the latest institution battered in the MOVEit cybersecurity breach sweeping the nation.
The system—which spans four campuses, research parks and a statewide health system—announced Wednesday that it was involved in a potential data breach with software product MOVEit.
In May, a ransomware group named Cl0P took credit for a massive cyberattack against hundreds of organizations, including higher ed institutions. The group claims it stole data by breaching MOVEit, a software product used for file transfers.
The MOVEit breach is particularly pervasive due to third-party vendors—many with higher education ties—using the software.
That was the case with the Missouri system, which used third party vendors in enrollment operations (with National Student Clearinghouse) and pension processes (with Pension Benefit Information, LLC ). The breached files from both vendors could include information on current and former University of Missouri students, according to the university.
Ben Canlas, interim vice president for information technology for the Missouri system, confirmed that some university data has been compromised, though he did not disclose further details as the investigation is ongoing.
The University of California, Los Angeles and Rutgers University were among those breached earlier this summer, Inside Higher Ed reported.