Mastodawn

I haven't seen much about this, but I saw a data breach notification come from the local K-12 school district (#BVSD) this morning, and then someone else who lives in a neighboring district (#SVVSD) mentioned that they had also seen a breach notification from their school district.

This is the notification. It says, in part, that this was "a nationwide data incident affecting over 350 school districts and higher education organizations across the US"

Does anyone have more information on these school data breaches/intrusions that seem to have been much larger than previously thought?

#databreach #schoolboard #Boulder #StVrain #colorado #infosec #schoolbreach

Show thread

Pyperkub Jul 19, 2023

@threatresearch Most likely it involved the MOVEiT breach.

Show thread

Paul Chauvet Jul 20, 2023

@threatresearch It is most likely the National Student Clearinghouse breach - which was related to MOVEit: https://alert.studentclearinghouse.org/ - I know it impacts higher ed - not sure about K-12 but most likely.

National Student Clearinghouse

Show thread

NakedWizard Jul 20, 2023

@threatresearch And then there's City of Denver sharing every employee's SSN with a third party health data company, who (surprise) had a data breach.

Show thread

Andrew 🌻 Brandt 🐇Jul 21, 2023

@NakedWizard Ooh that's a new one for me. Do you have a link to more information?

Show thread

NakedWizard Jul 21, 2023

@threatresearch It's the MoveIT breach I'll try to grab the press release when I'm at my desk. Basically CCD was sharing personal info including SSNs with Vitality, a "health app", who was using MoveIT.