This time, it’s Columbus City Schools in Ohio, who report that on May 1, they learned that an employee’s email account had been compromised. Their subsequent investigation resulted in them notifying an undisclosed number of people that their name and social security number had been in the employee’s email account.
You can read the October 15th notification on Vermont’s web site. There does not seem to be any notice on the district’s site.