Yesterday, April 9, 2013, no sooner, than I had posted my views on the recent stolen hard drives and consumer data at Vudu, expressing concern for the lack of protection of private customer data by corporations, and the confidence they gain or loose by the client on outcomes related to entrusting this data to these companies, I got an e-mail from my Alma Mater advising me that alumni donor data was stolen and released. Clearly, public and private entities are equally entrusted to protect private data:
Early this morning, we became aware that the individual or group known as “McGillLeaks” has posted online additional documents stolen last year from McGill’s Development and Alumni Relations office. This leak of information does not represent a new security breach.Files and documents made public this week include briefing notes and donor profiles. Please note that credit card or banking information has not been exposed.Following last year’s incident, we acted immediately to pursue those responsible for the theft by referring the matter to the Montreal Police, who continue to investigate. We also put in place a series of measures to tighten network security by restricting access to sensitive documents and implementing software, hardware and personnel policies aimed at ensuring that we are protected against future threats.
A leak of this kind is serious and we understand the concern it may generate. Rest assured that we are doing everything we can to resolve this issue and have informed the police of this new incident.
In the coming days, we will personally contact those of you whose information was included in the leaked documents. If you have any further questions in the meantime, please do not hesitate to contact me.
Vice-Principal, Development and Alumni Relations