DataBreaches.net

DataBreaches.net

The Office of Inadequate Security

Menu
  • Breach Laws
  • About
  • Donate
  • Contact
  • Privacy
  • Transparency Reports
Menu

Cincinnati Public School students’ busing info, including pickup spots, inadvertently released to wrong recipients

Posted on August 16, 2019August 16, 2019 by Dissent

Max Londberg reports:

Cincinnati Public Schools inadvertently released busing information, such as students’ names and their pickup and drop-off locations, to the wrong recipients.

The district planned to disseminate about 7,000 students’ information Thursday as a reminder to families as the first day of school approaches. But the district’s internal email system sent an unknown number of those students’ info to the wrong families. The glitch was caused by a bug introduced during an update of the system, said Lauren Worley, a district spokeswoman.

Read more on Cincinnati.com.

I do not understand why the district claimed this was not a breach. According to the report:

Each email included a student’s first and last name, bus number, bus route, pickup and drop-off location, and possibly the time of pickup and drop-off, Worley said.

I doubt that is directory information under FERPA. And if it’s not directory info, explain how a district spokesperson can say that the release was not a data dump or breach, “in that the wrong recipients are all believed to be families with students of their own enrolled in the district.”

That doesn’t make it not a breach. I agree it’s not a data dump, but it is certainly unauthorized disclosure and a breach of personal information on some level, isn’t it, even if you argue that bus info is not an “education record” under FERPA…?

Related Posts:

  • More than 19,000 records released in B.C. school…
  • UK: Unknown number of students hit by glitch that…
  • TN: Personal records of all Elizabethton students…
  • TX: 2 Birdville students hack into school district's network
  • FL: District investigates computer security breach

Post navigation

← Companies Puzzled After Report Says Their Biometric Data Leaked
IA: Virginia Gay Hospital notifies patients after discovering compromised employee email account →

Sponsored or Paid Posts

This site doesn’t accept sponsored posts and doesn’t respond to requests about them.

Have a News Tip?

Email:

Breaches[at]Protonmail.ch
Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Telegram: @DissentDoe

Browse by News Section

Latest Posts

  • Russian hackers exploiting Outlook bug to hijack Exchange accounts
  • Britain dismisses report claiming Sellafield nuclear site hacking, says no malware exists on our system
  • 23andMe data breach: Hackers accessed data of 6.9 million users
  • AlphV claims they have started contacting some of Tipalti’s clients (1)
  • Research: Privacy as Pretense: Empirically Mapping the Gap Between Legislative & Judicial Protections of Privacy
  • What it means — CitrixBleed ransomware group woes grow as over 60 credit unions, hospitals, financial services and more breached in US.
  • On September 2nd, the U.S. branch of Great Star Industrial Co. disbursed a ransom of 1 million dollars to a ransomware group
  • Former Public School Information Technology Manager Charged with Damaging School’s Computer Network

Please Donate

If you can, please donate XMR to our Monero wallet because the entities whose breaches we expose are definitely not supporting our work and are generally trying to chill our speech!

Donate- Scan QR Code   Donate!

Social Media

Find me on Infosec.Exchange.

I am also on Telegram @DissentDoe.

RSS

Grab the RSS Feed

Copyright

© 2009 – 2023, DataBreaches.net and DataBreaches LLC. All rights reserved.

HIGH PRAISE, INDEED!

“You translate “Nerd” into understandable “English” — Victor Gevers of GDI Foundation, talking about DataBreaches.net

©2023 DataBreaches.net