NY State Comtroller DiNapoli released more school district audits last week. As always, DataBreaches.net looked to see what audits concerned IT security. New Rochelle City School District – Information Technology (2021M-142) Issued Date: December 17, 2021 Audit Objective Determine whether New Rochelle City School District (District) officials established adequate controls over network and financial application…
Category: Education Sector
Monterey Peninsula Unified School District notifying current and former employees of data security incident
The Monterey Peninsula Unified School District has been notifying current and former employees of a data security incident that they discovered on or about November 1. They do not explain how they became aware that their network may have been subject to unauthorized access. W In their notification, a copy of which was submitted to…
Kearsarge Regional School District notified parents of data security incident
On November 4, external counsel for Kearsarge Regional School District in New Hampshire notified the New Hampshire Attorney General’s Office about a data security breach. According to the notification, on August 27, the threat actor was able to access and possibly acquire a file containing information on 1,825 students enrolled in the district’s meal plan…
Duneland School Corporation notifying employees and dependents of data breach
“Duneland School Corporation” sounds like it should be an education-related business but it’s actually a school district in Indiana. On October 27, they discovered that they had experienced a security incident that sounds like a ransomware attack. In a statement on their website, they note: Through our investigation, we determined that an unauthorized person obtained…
Evanston Township High School Defrauded Of $48,570 In Hack That Exposed 1,139 Identities
I’m backfilling a breach report from November as I just saw it now and it seems that others tracking k-12 data breaches may not have been aware of it, either. Jonah Meadows had reported that Evanston Township High School officials in Illinois were scammed out of more than $48,000 during a monthslong data breach that…
Luxemburg-Casco School District notifies employees of data breach
On November 18, 2021, Luxemburg-Casco School District in Wisconsin experienced a data security incident that resulted in unauthorized access to 1,399 individuals’ personal information involving their name in combination with social security number and financial account information without the PIN number or access code. In response to the breach, and in addition to offering those…