At Charles Stewart Mott Community College, we understand the importance of protecting and securing the personal information that we maintain. We are in the process of notifying individuals of an incident that may have involved some of their information. This notice describes the incident, the populations of individuals potentially involved, measures we have taken, and some steps that individuals involved may consider taking in response.
Mott Community College identified a security incident that resulted in the encryption of certain systems within our computer network. We immediately began to investigate, a cybersecurity firm was engaged, and steps were taken to address the incident and restore operations. We also contacted law enforcement. Through our investigation, we determined that an unauthorized person obtained access to our systems between November 27, 2020 and January 9, 2021, and transferred files maintained on one of our systems outside of our network.
For Current and Former Students, Family Members of Students Who Applied for Federal Financial Aid, Employees, Contractors and Other Vendors, Non-Credit Class Participants and Instructors in Workforce Development Training Programs Operated by the College.
During its continuing investigation, on March 2, 2021, we determined that some information related to current and former students, family members of students who applied for federal financial aid, employees, contractors and other vendors, and participants and instructors in non-credit classes, programs, and Continuing Education courses offered by the College may have been among the files transferred. The information includes the individuals’ name and one or more of the following pieces of information: Social Security number, driver’s license number, and financial account information (if such information was shared with the College as part of our relationship with the individuals).
For Employees, Spouses, and Dependents Who Are Currently or Were Formerly Enrolled in Mott Community College’s Self-Insured Dental Plan.
On January 23, 2021, we discovered that the files that were acquired by the unauthorized person may have included information relating to our self-insured dental plan. We completed a review of those files and discovered that the following information was involved in the incident: name, date of birth, and dental plan enrollment and claims information related to individuals who were enrolled in Mott Community College’s self-insured dental plan between 2014-2015 and 2019.
We have no indication that any information was actually viewed by the unauthorized person, or that it has been misused. However, out of an abundance of caution, we began notifying individuals whose information was involved in the incident on March 24, 2021. We recommend that all current and former enrollees in Mott Community College’s dental plan remain vigilant for signs of unauthorized activity by reviewing any statements that they receive relating to their health insurance. If they identify any activity that they did not authorize, please contact Mott Community College immediately. We also recommend that all individuals whose information may be involved to be vigilant for incidents of fraud or identity theft by reviewing their account statements and free credit reports for any unauthorized activity and report such activity to the appropriate law enforcement agency.
We regret that this occurred and apologize for any inconvenience. To help prevent something like this from happening again, and to further protect dental plan data and other personal information, we have implemented additional safeguards and technical security measures, including multifactor authentication for all network and email access and additional password requirements. In addition, to help relieve concerns and restore confidence following this incident, we have arranged for individuals whose impacted information includes a Social Security number or driver’s license number to receive a complimentary membership to Experian’s® IdentityWorks SM Credit 3B. This product helps detect possible misuse of personal information and provides individuals with identity protection services focused on immediate identification and resolution of identity theft. If you believe that you may have been impacted by this incident and would like to receive additional instructions on whether you are eligible for an Experian® complimentary membership, and if so, activation instructions, please call our dedicated call center at 1-855-484-1189, Monday through Friday, between 9:00 a.m. and 6:30 p.m., Eastern Time.
If you have any questions, please call our dedicated call center at 1-855-484-1189, Monday through Friday, between 9:00 a.m. and 6:30 p.m., Eastern Time.