WBTV Web Staff and Nick Ochsner report: Private information of students at schools districts and charter schools across the state were left vulnerable by a software misconfiguration by a third-party vendor, Union County Public Schools Superintendent Andrew Houlihan told parents in a letter this week. According to the letter, the misconfiguration came after iLeadr, a company used…
Category: Education Sector
Davenport Community Schools’ “server issues” were Karakurt issues
Months after CISA issued an alert about Karakurt, Davenport Community Schools in Iowa reported some “server issues.” On September 13, Schools Superintendent TJ Schneckloth issued a statement regarding what had been described as “server repairs” after the district went without internet for roughly a week back in September. That statement, updated on October 4, acknowledged…
Snatch adds — and then deletes — Wisconsin school district from leak site
Yesterday morning, DataBreaches observed that Snatch Team had added Kenosha Unified School District in Wisconsin to its leak site, but had not added any actual proof pack. In response to this site’s tweet, Dominic Alvieri responded that the district had disclosed a breach on September 29. Kenosha did not respond to an email this site…
Cybersecurity Frameworks: What K-12 Leaders Need to Know
The K12 Security Information eXchange (K12 SIX) is pleased to release “Cybersecurity Frameworks: What K-12 Leaders Need to Know,” a new resource for state and local education leaders encouraging the adoption of nationally recognized cybersecurity best practices. This white paper, commissioned by the State Educational Technology Directors Association (SETDA) as part of the work of…
WA: Whitworth confirms it was victim of ransomware attack; warns thousands of students, staff of data breach
In August, Whitworth University confirmed they had experienced a cyberattack in July. In that statement, they pledged to notify those impacted right away. They didn’t — unless you have a very liberal definition of “right away.” Earlier this month, the university notified the state attorney general’s office of the breach, as The Spokesman-Review reports. As…
NZ: Prospective students caught up in University of Otago data breach
Sinead Gill reports: For six weeks, most University of Otago students, including prospective students, had their personal information unprotected. A University spokesperson told Stuff while the risk of harm was “incredibly low”, some information was potentially accessible over this period, and most students could expect to be contacted by a privacy officer.” On October 5, the University…