DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Maine: Student SSN Collection for Tracking On Hold After Data Breach

Posted on September 28, 2010 by Dissent

I’ve previously covered the new law in Maine that asks parents to provide their children’s Social Security Numbers so that the state can track the students.  A number of school boards had the wisdom to write to the parents and basically say, “Look, we have to ask you for it, but we encourage you to say ‘No.’ ”  Now it appears that a data breach has spooked the state into delaying  implementation of the system even though it doesn’t involve this particular database.  Derek Viger reports:

Ed Commissioner Angela Faherty sent a letter to Maine superintendents today asking them to hold off on collecting student SSNs for the yearly October 1st data collection.  The reason?  Supposedly restricted information was not so restricted.  According to the letter, on September 24 an error allowed a tech director at one of Maine’s school districts to view SSNs of school staff at various schools around the state.  This system is not related to the one which collects student data.  Still, the DOE has take steps to ensure no student data can be viewed in the Infinite Campus District Edition – Infinite Campus is the state’s student data collection software.  Student SSNs already collected will be deleted from the State system.  An outside contractor will asses the State system’s security.  Finally, SAUs will be asked not to submit any SSNs they have already collected.

Read more on Pine Tree Politics.   Actually, the error within the secondary system allowed any authorized user of the system to see information  that should have been restricted.  Thankfully, it seems as if the error may have been spotted quickly.

Cross-posted from PogoWasRight.org

Related posts:

  • Kept in the Dark — Meet the Hired Guns Who Make Sure School Cyberattacks Stay Hidden
Category: Breach IncidentsEducation SectorExposureOf NoteU.S.

Post navigation

← Maryland Court: Employees Who Steal Data from the Company Computer Do Not Violate the Computer Fraud and Abuse Act
(Follow-up) Credit Card Skimming Suspect Pleads Guilty →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Louis Vuitton hit by data breach in Türkiye, over 140,000 users exposed
  • Infosys McCamish Systems Enters Consent Order with Vermont DFR Over Cyber Incident
  • Obligations under Canada’s data breach notification law
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information
  • UK police arrest four in connection with M&S, Co-op and Harrods cyberattacks (1)
  • At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy
  • Avantic Medical Lab hacked; patient data leaked by Everest Group
  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DeleteMyInfo Wins 2025 Digital Privacy Excellence Award from Internet Safety Council
  • TikTok Loses First Appeal Against £12.7M ICO Fine, Faces Second Investigation by DPC
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.