• Skip to main content
  • Skip to sidebar
  • Skip to submenu
  • Skip to footer

SUNY Broome

  • Ask a Question
  • Housing
  • Directory
  • Calendar
  • News
  • MyCollege
  • About
  • Academics
  • Admissions
  • Campus Life
  • Athletics
  • Continuing Education
  • Giving
  • Future Students
  • Current Students
  • Parents and Families
  • Alumni and Friends
  • Community and Business
  • Faculty and Staff
Home / Information Technology Services / FAQ: Data Breach related to MOVEit Transfer software

FAQ: Data Breach related to MOVEit Transfer software

What is the National Student Clearinghouse and why do campuses provide student information to this organization?
The National Student Clearinghouse is a federally-sponsored organization used for sharing and tracking student education related information for use in federally mandated reporting, as well as for research. It provides trend data and research evidence that many institutions of higher education utilize to improve the academic experience with services that ensure students maximize their academic opportunities and graduate on time. The National Student Clearinghouse helps education go further with innovative solutions that meet reporting, research, verification, transcript, and data exchange demands across the K-20 to workforce continuum.
What does TIAA CREF do for SUNY?
TIAA CREF is a benefits company used by SUNY campuses on behalf of their employees.
What does Corebridge do for SUNY?
Corebridge (AIG) is an investment company used by SUNY on behalf of their employees.
What has the National Student Clearinghouse, TIAA CREF, and Corebridge said about the MOVEit data breach?

Here is a link for updates on National Student Clearinghouse MOVEit Security Issue: alert.studentclearinghouse.org/

Corebridge: www.corebridgefinancial.com/vendor-incident

When was the data breach first discovered by the National Student Clearinghouse?
SUNY campuses learned in June 2023 that personal identifying information of students may have been compromised due to a global cyber incident. Information technology experts across SUNY launched an investigation to ensure the data breach did not extend to administration or campus systems.
When did TIAA CREF and Corebridge notify SUNY for the MOVEit data breach?

TIAA notified SUNY of the MOVEit data breach on June 16, 2023 and then confirmed on June 29, 2023 that the breach affected SUNY retirement plan participants and retirees.

Corebridge notified SUNY of the MOVEit data breach on June 27, 2023 and are still working on who has been affected on the SUNY retirement plans.

Why are SUNY campuses only now reporting the data breach to students, employees, and retirees whose information might be compromised, and to what extent has that delay deepened the vulnerability to identity theft?
SUNY colleges and universities are notifying the broad campus communities and retirees now because personal identifying information may have been compromised and steps have been taken to protect their information. This situation is evolving. At this time, there is enough information to provide to students, employees, and retirees who may have been impacted.
What specific types of personal data have been or may have been compromised?

Though not yet confirmed, based on how campuses utilize National Student Clearinghouse for the purposes of research, the compromised information may include name, date of birth, address, demographics, student identification number, financial account information, and social security numbers.

TIAA CREF
Potentially, employee or retiree data including personal identifying information and social security numbers may be compromised.

Corebridge
Potentially, employee or retiree data including personal identifying information and social security numbers may be compromised.

Has there been any known attempt to use any of the compromised data, or any demand for ransom or other action on the part of hackers?
There is no evidence of any attempted use of the compromised data, nor any demand for ransom that SUNY has been made aware of by the National Student Clearinghouse, TIAA CREF, or Corebridge.
What, if any, protective services related to identity theft are being offered by the National Student Clearinghouse, TIAA CREF, or Corebridge to students, employees, and retirees who have been or might have been compromised.

National Student Clearinghouse, TIAA CREF, and Corebridge are responsible for the official notifications, and will send information to impacted individuals. The organizations will provide identify theft protection and credit monitoring for 24 months. They have also informed the New York State Attorney General, Consumer Affairs Bureau, and the New York State Police.

What steps, if any, should such students, employees, and retirees be taking on their own?

SUNY and its campuses recommend that you use your right to a free annual credit report from each of the major credit reporting companies Experian, Equifax or TransUnion. You may also wish to consider contacting the Federal Trade Commission at www.ftc.gov/ or consumer.ftc.gov/features/identity-theft

In addition, here are links from two of the organizations where you can find additional information:
National Student Clearinghouse MOVEit Security Issue: alert.studentclearinghouse.org/

Corebridge: www.corebridgefinancial.com/vendor-incident

Information Technology Services Menu

Back to the ITS webpage

Policies

  • Guest Wireless Use Policy
  • Network Use Policy
  • Printing Policy
  • Security Incident Response Plan

Cyber Security Awareness

  • Cyber Security for Employees
  • Cyber Security for Students
  • Cyber Security Training
  • FAQ: Data Breach related to MOVEit Transfer software
  • Adding 2FA to Student Email

Contact Us

Business Building: Room 121
Phone: 607-778-5011
Email: ITSupport@sunybroome.edu
Fax: 607-778-5119

Office Hours:

Monday to Friday (except on Holidays)
8:00 am to 5:00 pm
Summer Hours (After Memorial Day and before Labor Day):
8:00 am to 4:00 pm

Mailing Address:

Information Technology Services
SUNY Broome Community College
P.O. Box 1017
Binghamton, NY 13902

Apply and Register

  • Academic Calendar
  • Apply
  • Courses by Semester
  • Financial Aid
  • Register for Classes
  • Take a Class
  • Transfer to SUNY Broome
  • Tuition and Fees

Quicklinks

  • Accessibility Resources Office
  • Bookstore
  • Career and Transfer Services
  • Diversity
  • Employment
  • Ice Center
  • Library
  • Site Translation
  • Transcripts

Health and Safety

  • Health Services
  • Public Safety
  • Bias, Title IX, Title VI

SUNY Broome Community College

  • SUNY Broome Community College
    PO Box 1017
    Binghamton, New York 13902
  • Campus Map/Parking
  • 607-778-5000
  • Contact Us
SUNY Broome on Facebook SUNY Broome on Twitter SUNY Broome on Instagram SUNY Broome on YouTube SUNY Broome on LinkedIn

© 2025 SUNY Broome Community College. All Rights Reserved. Accessibility | Terms & Usage | Privacy Guidelines

Copyright © 2025 · Broome on Genesis Framework · WordPress · Log in