ProctorU data breach
On August 19, 2020, CITL received notification about a ProctorU data breach that affected nine students. The data involved in the breach was from 2013-2015, and the breach occurred in late June 2020.
CITL has consulted with Memorial’s Information Access and Privacy (IAP) Office, and the Office of the Chief Information Officer (OCIO) on the matter, and the affected individuals have been notified. More information about the incident can be found here (https://www.proctoru.com/security-update) and here (https://www.proctoru.com/2020-data-incident).
Given the age of the information involved, and that plain-text passwords were not obtained, the risk associated with this incident is considered to be low. CITL has also been in conversations with ProctorU, and is confident that the actions taken in the wake of this incident will reduce the likelihood of this type of breach in the future.
ProctorU has been successfully used at Memorial since 2015 and, at the time of adoption, the service was assessed by the IAP Office. As a result of the recent breach, the IAP Office again reviewed ProctorU’s privacy policy and practices, and has no significant concerns.
In an effort to provide accurate information about the ProctorU service, and alleviate potential privacy or security concerns that students may have, a web resource is currently being developed that will soon be made available.
If you have questions or concerns related to the data breach or the ProctorU service, please email contactCITL@mun.ca.