The “Collection #1” Data Breach: What You Need to Know | Information Technology | University of Pittsburgh

The “Collection #1” Data Breach: What You Need to Know

Friday, January 18, 2019 - 16:45


Recent breaches that are making headlines provide an important reminder about the need to be vigilant in protecting data and privacy.

What Happened?

You may have seen recent news reports about the “Collection #1” data breach, which involves more than 772 million unique user and password combinations that were made available on a public website. This breach is actually a collection of many smaller breaches. The data exposed in this breach appears to be two to three years old, and much of the data already appeared in earlier breach notifications.  

What Can I Do?

Utilize the following good password practices to minimize your susceptibility to data breaches:

  • Use a password manager to simplify the management of your various passwords. The University recently made Pitt Password Manager (LastPass) available to all students, faculty, and staff.
  • Do not reuse passwords across different websites.
  • Change your passwords frequently.
  • Use strong, complex passwords that include symbols, numbers, and uppercase and lowercase letters. Pitt Password Manager can automatically generate strong passwords for you.
  • Use multifactor authentication on websites that allow it.

While Pitt Information Technology strives to provide the University with the latest security technologies for safe computing, it is only with the assistance of an informed and committed University community that we can truly protect our data and privacy.

Please contact the 24/7 IT Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.