New Incidents Co: Universidad Piloto de Colombia Hit by ALPHV This week, the Universidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak siteUniversidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak site this week. ALPHV claims to have 300 GB of files from students, faculty, and administration, and they…
Category: Education Sector
NC: UCPS student information made vulnerable due to insufficient security protections by vendor, superintendent says
WBTV Web Staff and Nick Ochsner report: Private information of students at schools districts and charter schools across the state were left vulnerable by a software misconfiguration by a third-party vendor, Union County Public Schools Superintendent Andrew Houlihan told parents in a letter this week. According to the letter, the misconfiguration came after iLeadr, a company used…
Davenport Community Schools’ “server issues” were Karakurt issues
Months after CISA issued an alert about Karakurt, Davenport Community Schools in Iowa reported some “server issues.” On September 13, Schools Superintendent TJ Schneckloth issued a statement regarding what had been described as “server repairs” after the district went without internet for roughly a week back in September. That statement, updated on October 4, acknowledged…
Snatch adds — and then deletes — Wisconsin school district from leak site
Yesterday morning, DataBreaches observed that Snatch Team had added Kenosha Unified School District in Wisconsin to its leak site, but had not added any actual proof pack. In response to this site’s tweet, Dominic Alvieri responded that the district had disclosed a breach on September 29. Kenosha did not respond to an email this site…
Cybersecurity Frameworks: What K-12 Leaders Need to Know
The K12 Security Information eXchange (K12 SIX) is pleased to release “Cybersecurity Frameworks: What K-12 Leaders Need to Know,” a new resource for state and local education leaders encouraging the adoption of nationally recognized cybersecurity best practices. This white paper, commissioned by the State Educational Technology Directors Association (SETDA) as part of the work of…
WA: Whitworth confirms it was victim of ransomware attack; warns thousands of students, staff of data breach
In August, Whitworth University confirmed they had experienced a cyberattack in July. In that statement, they pledged to notify those impacted right away. They didn’t — unless you have a very liberal definition of “right away.” Earlier this month, the university notified the state attorney general’s office of the breach, as The Spokesman-Review reports. As…