The University of Colorado is currently investigating a cyberattack that jeopardized students' and employees' personal information.
The information security teams are working to determine the range of the attack, according to CBS4. So far, it's reported that the attack appears to be the biggest data breach in the school's history.
Officials said the attack targeted a vulnerability in the File Transfer Appliance from Accellion, a third-party enterprise content firewall.
The service is used mainly by employees on the Boulder campus to send large files, but data from the Denver campus was also involved, according to officials.
CU Boulder suspended the use of Accellion on January 25, which was the same day they were notified of the cyberattack, reports CBS4.
The Office of Information Security at the university found that files uploaded by 447 CU users were at risk of unauthorized access. Those users were notified of the cyberattack on February 1 and were asked to report any confidential information within those breached files.
Officials said the personal information of CU Boulder and CU Denver students, including prospective students, and employees may have been accessed too.
The files could also include health and clinical data, as well as study and research data.
“We are continuing our investigation of the cyberattack to determine precisely what data was compromised," said Ken McConnellogue, CU Vice President for Communication. "We have suggested steps people can take to protect their identity and we are committed to providing timely notification and appropriate remedies to people in the CU community as soon as we know more."
Photo: Getty Images