Woodlake Unified District in California includes Castle Rock Elementary, Francis J. White Learning Center, Woodlake Educational Options Program, Woodlake Union High School, and Woodlake Valley Middle School. On April 11, the district took to Facebook to alert the community to a ransomware incident that occurred on April 9. Image: DataBreaches.net For months, the breach...
Jon Brodkin reports: The cybersecurity professor who helped uncover the Missouri government’s failure to protect teachers’ Social Security numbers has demanded that the state cease its investigation into him and stop making “baseless accusations” that he committed a crime. As we reported on October 14, Missouri Gov. Mike Parson threatened to prosecute and seek civil...
Alex Rose reports: The University of Colorado Boulder is sending emails to roughly 30,000 former and current students that have been impacted by a data breach, according to a release from the university. Most of the people impacted are no longer CU students or employees, according to the release. The university said the third-party software,...
CA: Centinela Valley Union High School District notifying employees and students of malware incident
On June 22, 2021, some Centinela Valley Union High School District computer systems were infected with malware that encrypted the data on those machines. We quickly identified and contained the malware, began to restore access to data, and launched an investigation with the assistance of a cybersecurity firm. What Information Was Involved? On July...
WCE3 reports: In a shocking incident, some Pakistani agents reportedly hacked the official website of Sambalpur University in Odisha today. According to reports, the University’s website’s page ‘grievance.suniv.ac.in’ was hacked by the agents who wrote ‘hacked by Devil Killer.’ Hacking of the website came to the fore as some students were using it for...
Here we go again — another ransomware attack on a k-12 school district, and the threat actors may have obtained current — and very old — data on both students and personnel. Kudos to the district for promptly alerting their community as to the possibility and risks, but still, this is serious. So far,...
An email gaffe due to not using bcc: instead of cc: or TO: revealed almost 400 Ohio State University students’ disability status to other students. Read the story on The Lantern. Note that this is a FERPA issue, and there really is no requirement for breach notification to those impacted, but the unintended disclosure...
Austin Herbaugh reports: A Chico State employee has been charged with criminal hacking after officials say he leaked vaccine exemption requests and personal information from some students. 22-year-old Alejandro Benitez is accused of publishing a list of Chico State students who applied for a religious exemption from the university’s COVID-19 vaccine requirement. Read more...
On October 7, the Manhasset Union Free School District revealed that it may have been the victim of a ransomware attack. There can no longer be any doubt that they were attacked. Over the weekend, Vice Society threat actors dumped the district’s data on their dark web leak site. Inspection of some of the...
Mark Keierleber reports: A monitoring company that thousands of schools used during remote and hybrid learning to ensure students were on task may have inadvertently exposed millions of kids to hackers online, according to a September report by the security software company McAfee. The research, conducted by the McAfee Enterprise Advanced Threat Research team, discovered...