Employees of Dracut Public Schools in Massachusetts weren’t as fortunate as those at Kanawha County Schools in West Virginia. Rick Sobey and Todd Feathers report that current and former employees’ personal information, including SSN, was acquired by a hacker after an employee fell for what the district describes as a “sophisticated phishing scheme.”
They did not report why the district considered this a “sophisticated” phishing attack.
No student or family information was reportedly compromised in the hack.
Read more on Lowell Sun.
And did you notice that my headline is consistent with what I suggested in my discussion of healthcare sector breaches – that we not just headline “hack” but also emphasize the employee/insider errors that enabled the hack?