Well, we expected there would be a lot of schools notified by the National Student Clearinghouse about the MOVEit breach, but now we have a bit more of the scope.
NSC has notified the California Attorney General’s Office on behalf of almost 900 schools. Their notification letter to those affected indicated that the types of information included personal information such as name, date of birth, contact
information, Social Security number, student ID number, and certain school-related records (for example, enrollment records, degree records, and course-level data). The data that was affected by this issue varies by individual.
NSC did not indicate how many students, total, they were notifying for those entities.
h/t, Brett Callow and Emsisoft, who have been tracking the MOVEit incident for us all.