Roughly 79,000 students in the California State University system had personal information, including their relationship status and sexual identity, exposed in a hack, the Long Beach Press-Telegram reports. According to the system, the data was exposed after a security breach at a third-party vendor, We End Violence, that California State had hired to provide training to prevent sexual assault.
“As soon as it was learned that student information was exposed by a third-party vendor — hired to provide web-based sexual assault and prevention training — immediate action was taken at the eight impacted campuses to further safeguard student information,” says a statement from the system chancellor’s office.
State law requires all students at system campuses to take a sexual-assault prevention course.
The company posted a notice of a “potential intrusion” on its website on August 24. It took the website down two days later in “an abundance of caution.”
No Social Security numbers or credit-card information was exposed, the system said.