As I’ve often noted on PogoWasRight.org, student health records are generally covered under FERPA, not HIPAA. When a school district provides a health center, however, the student’s health records may be covered by HIPAA, as seems to be the case with the St. Martin Parish School Based Health Centers in Louisiana. They notified HHS last…
Category: Education Sector
No private info exposed in 2nd Lewisburg Area School District breach
Marcia Moore reports: A second computer breach in the Lewisburg Area School District in March did not expose any personal student or staff information, Superintendent Mark DiRocco said. Unlike the October incident in which the FBI was called to assist the Buffalo Valley Regional Police investigating a Lewisburg student who twice hacked a school cafeteria…
Georgia Man Pleads Guilty To Filing 62 Fraudulent Tax Returns
Michael J. Moore, United States Attorney for the Middle District of Georgia announced that Bryant T. Johnson, aged 26, of Albany, Georgia entered a guilty plea to one count of wire fraud and one count of aggravated identity theft on June 17, 2015 before the Honorable W. Louis Sands, Senior U. S. District Court Judge,…
Calgary teen charged in public school board student data hack
Erika Tucker reports: A 15-year-old Calgary teen has been arrested and charged with hacking into public school board servers between November 2014 and March 2015. The teen allegedly hacked into the Calgary Board of Education (CBE) servers using phishing e-mails and credentials. Police say once in the server, he accessed corporate and personal information, but wouldn’t…
Shorter University data breach lawsuit advances
Oops – found this one sitting in drafts folder. I should have posted it two weeks ago. Law360 reports: A Georgia federal judge on Thursday trimmed breach of contract and negligent misrepresentation claims from a proposed putative class action over the theft of student medical data at a state university, but refused to let the…
NH: Stolen laptop contained student information from Monadnock Regional School District
On June 5, Monadnock Regional School District nofitied the New Hampshire Attorney General’s Office that a laptop stolen from an employee’s residence contained unencrypted information on 54 students. The employee was authorized to take work home. Reading further into the letter, however, it appears that the laptop was stolen from the employee’s vehicle, not their…