Who: Wichita State University 

No. of Accounts Breached: At least 3 employees

What was affected: Bank account numbers, student records, and other personal information.

When it happened: January 2019

How it happened: The employees were victims of an e-mail phishing scheme, which asked them to type in their university ID number and password, allowing scammers to access bank account numbers, student records, and other personal information. The university’s computing system was not hacked or compromised in this situation, instead, the employees responded to an email that enabled an unauthorized user to access their payroll information.

Outcome: Faculty members had been compensated by the university. WSU students, faculty, and staff have been directed to forward suspicious emails — including those asking for their myWSU ID or password — to an internal account for investigation.