The San Diego County Office of Education recently notified component districts that some employee retirement contribution data had been incorrectly shared with districts. From their notification: What Happened? On December 5, 2017, a San Diego County Office of Education (“SDCOE”) employee inadvertently sent an employee retirement contribution spreadsheet, containing employee name, Social Security number, and funding…
Category: Education Sector
Jail for man who hacked 1000 student email accounts in search for sexually explicit images
There’s a follow-up to a case I previously noted on this site in November, 2016. Graham Cluley reports: A 30-year-old man has sentenced to six months in prison, after he was found guilty of accessing more than 1,000 email accounts at a New York City-area university in a hunt for sexually explicit photographs and videos…
Email gaffe by Coventry University staff exposed 1,930 students’ details
The Coventry Telegraph reports that an email gaffe exposed some limited information on almost 2,000 students: Coventry University is being investigated after students’ confidential data was leaked to almost 2,000 people, the Telegraph can reveal. The university has apologised for the security breach and insists no passwords, financial or residential information was revealed. Confidential student…
Major data breach at University of Windsor law school
Cristin Schmitz reports: The University of Windsor’s law school has notified the hundreds of current JD applicants that their confidential information has erroneously been disclosed, including names, gender, birthdates, “Aboriginal status,” GPA and LSAT scores, as well as the applicants’ “admit value” — a numerical rating by law faculty assessors. According to recent e-mails sent…
Tupelo schools impacted by Questar data breach
Daily Journal reports: The Mississippi Education Department’s assessment vendor, Questar Assessment, Inc., reported today that 562 students in the Tupelo Public School District were impacted by the data breach the company discovered last week. Questar’s preliminary analysis found that an unauthorized user viewed student assessment records between Dec. 31, 2017 and Jan. 1 from Tupelo…
Monticello Central School District notifying almost 2,600 of phishing attack last year
When I saw that Monticello Central School District in New York had submitted a breach notification to the Vermont Attorney General’s Office and it mentioned phishing, I thought we might have our very first W-2 phishing incident of 2018. But no, it seems that the school district is reporting a phishing incident that they believe…