LockBit has added White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access — and may have exfiltrated — a lot of files. The listing was added yesterday. There is no notice on WSISD’s website that DataBreaches could...
The bar has been lowered. Which bar, you wonder? The bar for how low entities will sink rather than just saying they experienced a ransomware attack. Becky Z. Dernbach reports: Minneapolis Public Schools will open for in-person instruction as usual Monday, after a week of disruptions from “technical difficulties” and snow. In an email...
Sergiu Gatlan reports: Stanford University disclosed a data breach after files containing Economics Ph.D. program admission information were downloaded from its website between December 2022 and January 2023. Last week, the university sent data breach notification letters to 897 individuals who submitted personal and health information as part of the graduate application to its Department of...
Mark Keierleber’s article on The 74, noted on this blog yesterday and discussed by some of us on infosec.exchange, has apparently resulted in the district making some small admissions. Howard Blume reports: The Los Angeles Unified School District disclosed Wednesday that “approximately 2,000 student assessment records” were posted on the dark web as a...
Mark Keierleber reports: Detailed and highly sensitive mental health records of hundreds — and likely thousands — of former Los Angeles students were published online after the city’s school district fell victim to a massive ransomware attack last year, an investigation by The 74 has revealed. The student psychological evaluations, published to a “dark...
Duane Morris writes: The Department of Education has issued an electronic notice relating to the updated cybersecurity regulations published by the Federal Trade Commission (FTC). On December 9, 2021, the FTC amended the Safeguards Rule under the Gramm-Leach-Bliley Act (GLBA). This comprehensive amendment updated data security requirements for financial institutions, including all Title IV institutions of...
Kristen Taketa reports: Days after a sweeping systems outage first disrupted student learning and forced teachers to remake their lessons, the Sweetwater Union High School District still hasn’t said what caused the outage or when it expects a fix. The outage was discovered Sunday in the district’s Microsoft systems, including Outlook, according to...
Ben Crnic reports: A data breach may have exposed information related to some students at a school district in Northern Westchester. The breach was announced by Mount Pleasant Central School District Superintendent Peter Giarrizzo on Friday, Feb. 17, who said that several student email passwords may have been compromised by the incident. After the data...
For some students in Des Moines, Iowa, the return to school after the winter holidays was soon interrupted by a cyberattack that resulted in classes being canceled. But as classes continued to be canceled, it became clearer that restoration and recovery would not be quick. By January 11, two days after the announcement of...
Little Rock school district seeks cyberattack disclosure guidance