Education Sector

AU: Hacked state government contractor says stolen data yet to be posted online

Ashleigh McMillan reports: A technology company working for the Victorian government says none of the data stolen by hackers on Thursday has been released online so far. PNORS Technology Group works with six state agencies, including the Education and Training Department, and stores sensitive personal information about families with children in primary schools, such...

CT: Brookfield admits ‘blackout pen’ error led to sharing of special education students’ information

Trevor Ballantyne reports: School officials this week acknowledged a failure to properly redact personally identifiable information linked to students receiving special education services from the school district. According to emails obtained by The News-Times, parents accused the district of violating privacy protections laid out under the U.S. Family Education Rights and Privacy Act, or...

OK: Norman Public Schools experiencing malicious ransomware attack

Terre Gables reports: Norman Public Schools is currently experiencing a malicious ransomware attack. Wes Moody, Public Information Officer Norman Public Schools says, “a message we have sent to staff and parents stating the following: NPS Parents, OUR NPS NETWORKS ARE CURRENTLY EXPERIENCING A MALICIOUS RANSOMWARE ATTACK. OUR TECHNOLOGY SERVICES TEAM IS HARD AT WORK...

Scammers use sensitive information trick student loan borrowers

Warn any family or friends who may have outstanding student loans to be wary of scammers contacting them about their loans. WRAL reports: The Biden administration’s student loan forgiveness plan is not only attracting criticism but scammers too. This time-scammers are promising victims far more financial forgiveness than what is possible and using detailed...

FTC Brings Action Against Ed Tech Provider Chegg for Careless Security that Exposed Personal Data of Millions of Customers

The Federal Trade Commission is taking action against education technology provider Chegg Inc. for its lax data security practices that exposed sensitive information about millions of its customers and employees, including Social Security numbers, email addresses and passwords. Chegg allegedly failed to fix problems with its data security despite experiencing four security breaches since...

Bits ‘n Pieces (Trozos y Piezas)

New Incidents Co: Universidad Piloto de Colombia Hit by ALPHV This week, the Universidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak siteUniversidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak site this week. ALPHV claims to have 300 GB of files from students, faculty, and administration, and...

NC: UCPS student information made vulnerable due to insufficient security protections by vendor, superintendent says

WBTV Web Staff and Nick Ochsner report:  Private information of students at schools districts and charter schools across the state were left vulnerable by a software misconfiguration by a third-party vendor, Union County Public Schools Superintendent Andrew Houlihan told parents in a letter this week. According to the letter, the misconfiguration came after iLeadr, a company...

Davenport Community Schools’ “server issues” were Karakurt issues

Months after CISA issued an alert about Karakurt, Davenport Community Schools in Iowa reported some “server issues.” On September 13, Schools Superintendent TJ Schneckloth issued a statement regarding what had been described as “server repairs” after the district went without internet for roughly a week back in September. That statement, updated on October 4,...

Cybersecurity Frameworks: What K-12 Leaders Need to Know

The K12 Security Information eXchange (K12 SIX) is pleased to release “Cybersecurity Frameworks: What K-12 Leaders Need to Know,” a new resource for state and local education leaders encouraging the adoption of nationally recognized cybersecurity best practices. This white paper, commissioned by the State Educational Technology Directors Association (SETDA) as part of the work...