Warn any family or friends who may have outstanding student loans to be wary of scammers contacting them about their loans. WRAL reports: The Biden administration’s student loan forgiveness plan is not only attracting criticism but scammers too. This time-scammers are promising victims far more financial forgiveness than what is possible and using detailed and…
Category: Education Sector
FTC Brings Action Against Ed Tech Provider Chegg for Careless Security that Exposed Personal Data of Millions of Customers
The Federal Trade Commission is taking action against education technology provider Chegg Inc. for its lax data security practices that exposed sensitive information about millions of its customers and employees, including Social Security numbers, email addresses and passwords. Chegg allegedly failed to fix problems with its data security despite experiencing four security breaches since 2017….
Bits ‘n Pieces (Trozos y Piezas)
New Incidents Co: Universidad Piloto de Colombia Hit by ALPHV This week, the Universidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak siteUniversidad Piloto de Colombia was added to the ALPHV (aka “BlackCat”) leak site this week. ALPHV claims to have 300 GB of files from students, faculty, and administration, and they…
NC: UCPS student information made vulnerable due to insufficient security protections by vendor, superintendent says
WBTV Web Staff and Nick Ochsner report: Private information of students at schools districts and charter schools across the state were left vulnerable by a software misconfiguration by a third-party vendor, Union County Public Schools Superintendent Andrew Houlihan told parents in a letter this week. According to the letter, the misconfiguration came after iLeadr, a company used…
Davenport Community Schools’ “server issues” were Karakurt issues
Months after CISA issued an alert about Karakurt, Davenport Community Schools in Iowa reported some “server issues.” On September 13, Schools Superintendent TJ Schneckloth issued a statement regarding what had been described as “server repairs” after the district went without internet for roughly a week back in September. That statement, updated on October 4, acknowledged…
Snatch adds — and then deletes — Wisconsin school district from leak site
Yesterday morning, DataBreaches observed that Snatch Team had added Kenosha Unified School District in Wisconsin to its leak site, but had not added any actual proof pack. In response to this site’s tweet, Dominic Alvieri responded that the district had disclosed a breach on September 29. Kenosha did not respond to an email this site…