Add North Orange County Community College District (NOCCCD) to any list you may be Curating of colleges that have suffered breaches. According to a report from the college, beginning on December 7, 2021, an unauthorized individual accessed the networks of both Cypress College and Fullerton College and may have exfiltrated copies of files. The attack was detected on January 10, 2022.
On or about March 25, 2022, NOCCCD began mailing written notice of this incident to all affected employees and students. NOCCCD notes that it had previously provided preliminary notice on February 17.
Because the template doesn’t provide all the data types involved, it is not clear what types of personnel information and student information were involved, but NOCCCD is offering the 19,678 affected individuals 12-months of services from IDX.
In response to the incident, NOCCCD has taken a number of steps, including implementing multifactor authentication.
Updated May 27, 2022: DataBreaches subsequently learned that this was a ransomware incident.