A computer security breach involving the University of Arizona law college may have provided a hacker with access to names and Social Security numbers of 9,000 former students and applicants.
Officials say the July breach may have included old class rosters and applicant lists from before 2008. Those potentially affected have been sent notification letters.
The UA said the data was erroneously stored on a server for the college's public website.
The university said it removed the information and contacted law enforcement agencies.
The university said it's not aware of any resulting identity thefts, but it is providing a year of credit monitoring.
The university no longer uses Social Security numbers as personal identifiers.