Information was stolen during recent cyber attack: University of Winnipeg confirms
Posted April 4, 2024 5:00 pm.
The University of Winnipeg has confirmed information was stolen from the school during a recent cyber attack.
The university says on March 24, they began an investigation into a cyber attack that hit the school, and have since determine a file server containing information that likely includes personal information of current and former students and employees was taken.
The university says their investigation is ongoing, but believes the cyber attack occurred prior to March 24.
RELATED: International students worried about flights home after University of Winnipeg extends classes
It is also believed that the following areas were impacted:
| Population likely affected | Information exposed |
| All current employees and all former employees employed since 2003 | Names, social insurance numbers, dates of birth, street addresses, phone numbers, and compensation information |
| All current employees and all former employees employed since 2015 | Bank account information |
| All students enrolled in University of Winnipeg undergraduate and graduate programs since the academic year beginning in September 2018 This does not include Professional, Applied and Continuing Education (PACE) students, English Language Program students, and University of Winnipeg Collegiate students | Names, programs of study, street addresses, student numbers, dates of birth, social insurance numbers (domestic students only), fee and tuition amounts, gender information, and marital status information |
| All students enrolled in Professional, Applied and Continuing Education (PACE) and English Language Program (ELP) programs since the academic year beginning in September 2019 This does not include undergraduate and graduate students and University of Winnipeg Collegiate students | Names, programs of study, street addresses, student numbers, dates of birth, social insurance numbers (domestic students only), and tuition amounts |
| All students to whom the University issued T4A forms since 2016 | Names, street addresses, social insurance numbers (domestic students only), and funding amounts |
The university says they will be providing those who are likely affected with a two-year credit monitoring service.
By enrolling in the service, individuals can monitor for signs of identity fraud so protective action can be taken. This will also provide the user with an immediate alert if anyone attempts to open a credit account in your name.
“In the coming days, we will begin e-mailing and mailing codes along with instructions about how to enrol. You do not need to contact us for a code; however, if you are a former employee or student and would like to update your address, please e-mail incident.support@uwinnipeg.ca. We will send future communications to your updated address. If you are included in one of the groups listed above and do not receive a code within two weeks, please email us at incident.support@uwinnipeg.ca,” said the university in a statement.
The university adds they are continuing to investigate what other areas might have been impacted by the attack.
