IU said it notified the Indiana attorney general's office Tuesday of the potential exposure of the names, addresses and Social Security numbers of the affected students, who attended IU's Bloomington and six other regional campuses from between 2011 and 2014, a news release said.
It says the data was accessed by three automated computer data mining applications, called webcrawlers, used to improve internet search capabilities.
The university says that once it discovered the possible exposure, it secured the data and has found no evidence that the files were viewed or used for inappropriate or illegal purposes. It says it will begin notifying all affected students of the possible data exposure this week.
IU says it's also taking steps to help the students with credit monitoring. Those steps include:
•Setting up a call center to handle questions from people whose information was potentially placed at risk as a result of this situation. That center will be operational no later than 8 a.m. Friday at 1-866-254-1484.
•A website with information on how to monitor one's credit accounts and with answers to other questions regarding the potential data exposure has been set up at https://apps.usss.iu.edu/usss-data-exposure/faq.cfm.
•To assist with credit monitoring, IU will supply the Social Security numbers and names of those potentially affected to all three major credit-reporting agencies.