I'm not surprised. In September of 2004, I noticed on one of the Ferris web pages a link where applicants could apply for admission to the university. It should have directed the applicants to a secure part of the website. However, it did not. A year later, for the first time, I notified an office that the situation existed. The person who answered the phone didn't quite believe that the problem existed. But with further pursuation, the problem was reported to a supervisor. Then it was fixed. No telling how many social security numbers, and other private data were passed from server to server where anyone could read them like post cards in the U.S. mail system.