On March 25, 2024, The University of Winnipeg announced that it had been subject to a cyber attack. On April 4, 2024, it confirmed that the stolen data included personal information. A list of the groups likely affected, as well as the types of information exposed, was shared on the University website. Individuals likely affected were provided a two-year credit monitoring service.
At that time, the University committed to completing a thorough investigation to determine whether others were affected, and to provide further notifications based on the findings. That investigation has now concluded, and we have updated our notification of groups likely affected and information exposed. This notification can be found on the University’s Cyber Attack Updates and Support page. Anyone included in one of the groups listed who has not already received two years of credit monitoring can request it from that page. Any questions can be directed to incident.support@uwinnipeg.ca.
It is disturbing that higher education institutions like the University and other public sector organizations are being targeted by cyber attacks. This has been a terrible incident that has directly impacted our community. We are grateful to the staff members who worked many long hours to restore systems following the attack, as well as to our entire UWinnipeg community for their patience and understanding through this challenge. Rest assured that we are carefully considering the results of our investigation and are emerging from this incident with stronger cyber defences.