Online Exposure of Personnel Information - Frequently Asked Questions

Frequently Asked Questions


What happened? When did it happen?
The MyID accounts of two individuals employed at the University of Georgia recently were attacked by hacker(s) who attempted to fraudulently access secure information on the UGA network. These hacker(s) were able to reset the victim's passwords and gain access to the personnel records in their accounts.
Who is affected? How can I know whether my information was included in this breach?
The hacker(s) gained access to files containing information on approximately 8500 individuals who are employed at UGA. If you would like to confirm whether your information was included in this file, please contact the University of Georgia via the EITS HelpDesk at (706) 542-3106 or helpdesk@uga.edu.
Who has been notified about this disclosure and how?
UGA has notified the public through a press release and is contacting affected individuals via first class mail.
What steps are being taken by the University to address this issue?
The University is working with local authorities to assist in the investigation of this security breach.
My information was included in this breach. Does this mean that I am a victim of identity theft? What should I do now?
There is no evidence that this information has yet been used to commit identity theft. However, it is important that you take steps to protect your credit to minimize the risk of identity theft occurring. Affected individuals should immediately place a Fraud Alert on their Credit through one of the three primary credit reporting bureaus. You may file a fraud alert on the Equifax fraud alert website.

Additionally, UGA will be offering credit monitoring services to affected individuals. When the individuals are notified via mail, instructions will be provided on how to gain access to these services. And as always, everyone should take appropriate steps to prevent and/or detect identity theft (e.g. by monitoring account and bank statements and by checking credit report(s) on a regular basis).

More information on guarding against identity theft is available from UGA, the Federal Trade Commission (FTC), the Georgia Governorís Office of Consumer Protection, and other sites:

What else can I do to protect my identity?
Check your credit report on a regular basis. Your credit report or credit file disclosure is a record of your credit activities. It lists any credit-card accounts or loans you have and the balances on the accounts or loans. It also shows how regularly you make your payments or if any action has been taken against you because of unpaid bills. Your credit report is continually updated.

There are three primary credit reporting bureaus: Equifax, TransUnion and Experian. Everyone is entitled to one free credit report from each of the three primary credit reporting bureaus each year. Georgia residents are entitled by the Fair Business Practices Act to two free credit reports from each reporting agency per year. Information on obtaining your credit report is available on the University of Georgia Office of Information Securityís Identity Theft and Identity Fraud webpage or through the Georgia Governorís Office of Consumer Protection.

If you suspect that you are a victim of identity theft, you can take steps to protect your credit by placing a fraud alert on your credit report. Placing a fraud alert on your credit report lets any lender who looks at your credit file know that you suspect you are a victim of fraud. If someone tries to open a new credit account, or make adjustments to an existing credit account, lenders should take reasonable steps to verify that you are the person requesting the change.

When you request a fraud alert through one of the national credit reporting agencies your request is automatically sent to the other two as well. Initial fraud alerts are free; they last 90 days and can be requested online. Fraud alerts can be extended to an additional 7 years if necessary. For details, visit Equifax, TransUnion or Experian.