Summary: Audit Objective Determine whether East Syracuse Minoa Central School District (District) officials established adequate information technology (IT) controls to ensure employees’ personal, private and sensitive information (PPSI) on the financial server was adequately protected from unauthorized access, use and loss. Key Findings District officials did not adequately apply established IT controls to ensure PPSI…
Category: Education Sector
Update on Union Community School District ransomware incident
On June 1, DataBreaches.net reported that DoppelPaymer threat actors had apparently attacked Union Community School District in Iowa and exfiltrated data about employees and students. Neither the district’s superintendent nor any board of education members had responded to this site’s inquiries about whether there had been any public disclosure of the breach that occurred in…
Cost of ransomware attack on Baltimore County public schools climbs to $7.7M
Lillian Reed reports: Baltimore County school officials estimate the ransomware attack in November will cost the system at least $7.7 million, nearing what Baltimore City spent following a similar attack in 2019. The estimated costs cover a wide range of programs, services, trainings and licenses that helped Maryland’s third-largest school system respond to and recover…
AZ: MCCCD release findings from cyber security breach investigation
ABC reports: The Maricopa County Community College District is releasing the findings from an investigation into a cyber security breach that happened earlier this year. In March, the college district announced that suspicious activity was found on their network which resulted in a system shutdown. […] A forensic investigation determined MCCCD likely identified and prevented…
N.J. school worker accidentally leaked Social Security numbers of staff to public
Anthony G. Attrino reports: Hundreds of employees in the Leonia School District in Bergen County were exposed to a data breach last month when an office worker inadvertently linked their personal information to an online meeting agenda. The Social Security numbers of about 300 teachers, custodians and administrators were exposed to the public for four…
National cyber crime investigation sparked after Northampton college hit by hackers
Logan MacLeod reports: A national cyber crime investigation has been sparked after a college in Northampton was hit by hackers, forcing the school to close due to safety concerns. Kingsthorpe College officials say it was the victim of a cyber attack, which has ‘significantly reduced’ its capacity to run its information management systems, meaning it…