Maynooth University has said that some of its data was accessed in a cyber-attack on one of its third-party providers in May this year.

In a letter to individuals whose data may have been affected, the university said the attack was targeted at technology company Blackbaud, which provides customer-relationship management systems to the education sector.

Back-up file

Blackbaud told the university that it had successfully prevented the cybercriminal from blocking system access and fully encrypting files. Before this happened, however, the attacker managed to remove a copy of a back-up file containing personal information, including some university data.

The information involved was linked to Maynooth University’s engagement with former students and supporters, and included basic details and contact information, as well as educational and professional information.

Data 'not being misused'

Blackbaud has said, however, that an investigation found that no encrypted information, such as credit-card, bank-account details or passwords, was accessed.

Blackbaud paid a ransom after receiving confirmation that the copy had been destroyed. The university said Blackbaud believed that any data did not go beyond the attacker, and was not being misused nor disseminated.

Maynooth University has, however, warned those whose data may have been affected to stay vigilant and report any suspicious activity or identity theft to the authorities.