Mark Keierleber reports: Detailed and highly sensitive mental health records of hundreds — and likely thousands — of former Los Angeles students were published online after the city’s school district fell victim to a massive ransomware attack last year, an investigation by The 74 has revealed. The student psychological evaluations, published to a “dark web”…
Category: Education Sector
Department of Education to Enforce Revised Cybersecurity Requirements and Expands Interpretation of “Third-Party Servicer” Definition
Duane Morris writes: The Department of Education has issued an electronic notice relating to the updated cybersecurity regulations published by the Federal Trade Commission (FTC). On December 9, 2021, the FTC amended the Safeguards Rule under the Gramm-Leach-Bliley Act (GLBA). This comprehensive amendment updated data security requirements for financial institutions, including all Title IV institutions of higher…
Sweetwater Union High School District still dealing with impact of undefined situation
Kristen Taketa reports: Days after a sweeping systems outage first disrupted student learning and forced teachers to remake their lessons, the Sweetwater Union High School District still hasn’t said what caused the outage or when it expects a fix. […] The outage was discovered Sunday in the district’s Microsoft systems, including Outlook, according to the…
Data Breach Reported At Mount Pleasant Central School District
Ben Crnic reports: A data breach may have exposed information related to some students at a school district in Northern Westchester. The breach was announced by Mount Pleasant Central School District Superintendent Peter Giarrizzo on Friday, Feb. 17, who said that several student email passwords may have been compromised by the incident. After the data breach…
Update to the Des Moines Public School ransomware attack
For some students in Des Moines, Iowa, the return to school after the winter holidays was soon interrupted by a cyberattack that resulted in classes being canceled. But as classes continued to be canceled, it became clearer that restoration and recovery would not be quick. By January 11, two days after the announcement of school…
Update: Wawasee Community School Corporation victim of BlackCat attack
The Wawasee Community School Corporation in Indiana was reportedly the victim of a cyberattack by BlackCat. The threat actors have now leaked what they claim are 9.78 GB of files on their leak site because Wawasee did not pay their demands. Perhaps luckily for Wawasee, the download link is not working at this time. There…