Illuminate Education breach that affected NYC schools spreads to other districts

Benjamin Freed  reports:

A school district in Coventry, Connecticut, notified families of its students this week that students’ data may have been swept up in a breach of one of its vendors earlier this year. The breach-notification letter, dated Tuesday, stated that data belonging to the roughly 1,700 students enrolled in Coventry Public Schools may have been exposed in a January breach of Illuminate Education, a software company that develops software that tracks students’ academic progress.

The Illuminate product in question, called eduCLIMBER, is used by school districts to track students’ grades, attendance and behavioral development, according to the company’s website.

Read more at StateScoop.

But it’s not just the NYC schools and a district in Connecticut that have been impacted. Cristian Sida reports from Colorado:

A third-party company, Illuminate Education, that holds student data for school districts nationwide, including Mesa County Valley School District 51, experienced a data breach.

Illuminate Education confirmed in an investigation specific databases containing student information were breached between Dec. 28, 2021, and Jan. 8, 2022.

Read more at NBC11.

How many more school districts have been impacted? Probably a lot although we may not find out about them all.  Follow @DougLevin and @K12CyberMap as they are tracking this incident.

About the author: Dissent

Comments are closed.