* CU Women Succeeding Symposium sets record attendance
* CU system notifies group of employees about W-2 irregularities
* Retirees file suit against newly signed PERA law
* Tuition flexibility plan might go to lawmakers this month
* Faculty Council budget committee offers guide to approaching cuts
* Wellness promotion part of planned improvements to health benefits
* CU still top contributor to statewide charity campaign
* Five questions for Steven Medema
* INVST marks 20th year with gala, workshops
* People
* Did you know...
* Letters to the editor
  Conference on World Affairs returns for 62nd run
  School of Public Affairs to provide law enforcement education
  Pyramid Plus center will promote social emotional development in kids
  University of Colorado Hospital internal medicine, specialty clinic relocating
  Biotech Building receives boost from $1 million gift
  Colorado company licenses CU test to assess chronic liver disease
   Newsletter Archive
Download Newsleter in PDF
Share your thoughts
Share your opinions

Send your thoughts and suggestions for the Newsletter

CU system notifies group of employees about W-2 irregularities

Security officials fix online application before restoring service

A group of 335 current and former University of Colorado employees received letters last week notifying them that the university is investigating irregularities in the way some employee W-2 records were accessed through a Web-based portal.

The irregularities were detected through a myCU Portal application that enables employees to download electronic copies of their W-2s. Those affected include current and former employees on all four CU campuses, CU system security officials said.

Officials said a credit-monitoring service would be provided for one year at no cost to all employees affected by the situation. Anyone who received a letter is being advised to contact a CU Payroll & Benefit Services counselor at payprod@cu.edu to learn more about how to sign up for the service.

"The irregular activity is limited, but we decided to err on the side of caution in notifying employees," said Assistant Vice President William Walker IV, the university's chief information security officer. "We take our employees' privacy very seriously."

Walker said CU security officials are conducting an analysis of the W-2 data to determine if they were accessed for legitimate business purposes or for malicious reasons between Feb. 19, 2009, and Jan. 25, 2010.

Once the irregularities were discovered, university system data security officials immediately disabled the application and removed a potentially vulnerable access point before restoring service, he said.

Bookmark - Print - Share