Cyber Incident Victim: Juniata College
Date:
Mar 2019
Location:
United States of America
Summary
Juniata College experienced unauthorized access to certain employee email accounts, prompting an investigation that could not rule out potential data exposure. The compromised accounts contained varying personal information, including financial details, passport numbers, medical records, and limited Social Security numbers, though no actual misuse was identified. Following discovery, the institution secured affected accounts, conducted a manual review to identify impacted individuals, and implemented additional safeguards while notifying regulators. Affected parties were informed approximately eight months after initial detection, with the college offering support resources to address concerns.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Juniata College detected unusual email activity within certain employee accounts in March 2019, prompting an immediate internal review. The institution engaged third-party forensic investigators to assess potential unauthorized access to these accounts. By April 22, 2019, investigators concluded they could not definitively rule out unauthorized access to emails in the affected accounts. Although the investigation failed to confirm whether data was actually compromised, the college initiated a comprehensive manual and programmatic review of the email accounts' contents to identify potentially exposed personal information. This review concluded on July 11, 2019, verifying the presence of sensitive data in the accounts. The college then dedicated time to compiling accurate contact details for impacted individuals, completing this process by November 1, 2019, when notification letters began distribution.
The compromised email accounts contained varying combinations of personal data including financial account information, passport numbers, limited medical details, and insurance information. Social Security numbers were confirmed in a limited number of cases. No evidence of actual or attempted misuse of the exposed information was identified during the investigation. In response to the incident, Juniata College secured the affected email accounts upon initial detection and initiated a review of existing security policies and procedures. The college implemented additional safeguards to enhance data protection across its systems and fulfilled regulatory reporting obligations by notifying relevant federal and state authorities. Affected individuals were directed to a dedicated toll-free assistance line and provided with guidance on monitoring personal information for potential misuse.