February 21, 2014
Dear members of the campus community:
On Wednesday evening, we announced that the University of Maryland was the victim of a sophisticated computer security attack that exposed records containing personal information. Since that time, we have been working around the clock to ensure the breach has been contained and that other data systems are protected.
The breached records included name, Social Security number, date of birth, and University identification number. No financial, academic, health or contact information was accessed.
To help protect your identity, we are offering a free, one-year membership of Experian’s ProtectMyID Alert. This product helps detect possible misuse of your personal information and provides you with superior identity protection support focused on immediate identification and resolution of identity theft.
Effective immediately, operators at Experian are standing by at 1-866-274-3891 (Monday-Friday 9:00 am-9:00 pm EST and Saturday-Sunday 11:00 am-8:00 pm EST) to answer general questions or concerns regarding this matter. Starting on Tuesday, February 25 at 9:00 am EST, you can call them directly to determine if your records were compromised and to register for your free year of credit protection. You must activate this service by 11:59 pm EST on May 31, 2014.
Once your ProtectMyID membership is activated, you will receive the following features:
— Free copy of your Experian credit report
— Surveillance Alerts for: Daily Bureau Credit Monitoring: Alerts of key changes & suspicious activity found on your Experian credit report.
— Identity Theft Resolution & ProtectMyID ExtendCARE: Toll-free access to US-based customer care and a dedicated Identify Theft Resolution agent who will walk you through the process of fraud resolution from start to finish for seamless service. They will investigate each incident; help with contacting credit grantors to dispute charges and close accounts including credit, debit and medical insurance cards; assist with freezing credit files; contact government agencies.
It is recognized that identity theft can happen months and even years after a data breach. To offer added protection, you will receive ExtendCARE, which provides you with the same high-level of Fraud Resolution support even after your ProtectMyID membership has expired.
Our investigation into the cyber-attack continues, and the University of Maryland Police Department is working with the U.S. Secret Service on this matter. Additionally, we have partnered with MITRE, a leading systems engineering company specializing in cybersecurity, to provide additional forensic analysis on how this attack happened, and how to prevent such attacks in the future.
We understand this breach is causing concern and consternation. Please know that we are doing everything possible to ensure the protection of your personal information as we move forward. If you have any questions, please contact us at firstname.lastname@example.org. Additional updates will be posted to this website: www.umd.edu/datasecurity.
Brian D. Voss
Vice President, Division of Information Technology
Last updated: February 27, 2014