{"type":"rich","version":"1.0","provider_name":"Transistor","provider_url":"https://transistor.fm","author_name":"Cybertraps Podcast","title":"EdTech Data Breaches: What You Need to Know Cybertraps 125","html":"<iframe width=\"100%\" height=\"180\" frameborder=\"no\" scrolling=\"no\" seamless src=\"https://share.transistor.fm/e/05f5b8b3\"></iframe>","width":"100%","height":180,"duration":2758,"description":"Show notes News Item: - On December 28, 2021, Illuminate Education was hacked. The intrusion, which lasted until January 8, 2022, compromised the private data of nearly one million students in New York State (and maybe more) - The breach affected at least 24 school districts and 18 charter schools, along with one Board of Cooperative Educational Services (BOCES) - The company initially described the hack as an “attempted security incident” but then shut down both Skedula and PupilPath for more than a week to address the issue - Possibly the largest school data breach in U.S. history - What Is Illuminate Education? - A California-based edtech company (founded in 2009) that runs a variety of school information platforms, including Skedula (aka IO Classroom), PupilPath, and eduCLIMBER - From its website: - Our solution brings together holistic data and collaborative instructional tools, and puts them in the hands of educators. - As a result, they can visualize each student’s progress, determine the right instructional or intervention strategy, and take the best next action, moment-by-moment. - More than 17 million students and 5,200 districts and schools across all 50 states rely on Illuminate every day to move the student performance needle. - It does not have a NY state- or city-wide contract but it is an approved vendor, which means that it was “rigorously reviewed” by the IT Department for the state Department of Education - Schools use the platforms for a variety of purposes: - tracking grades and attendance - communicating with parents - contact tracing for COVID–19 - The company has earned about $5 million per year from NY schools - What Data Was Compromised? - A database containing a variety of personally identifying information, including: - names - birthdays - ethnicities - home languages - student ID numbers of current and former public school students going back to the 2016–17 school year - identities of special ed students - class and teacher schedules...","thumbnail_url":"https://img.transistorcdn.com/-npbjlTwEpH5Ybi_ySNRhS-EfNqaI7Ep1svTppTGhLE/rs:fill:0:0:1/w:400/h:400/q:60/mb:500000/aHR0cHM6Ly9pbWct/dXBsb2FkLXByb2R1/Y3Rpb24udHJhbnNp/c3Rvci5mbS9zaG93/LzQxNTcyLzE2ODM5/MjY0NDktYXJ0d29y/ay5qcGc.webp","thumbnail_width":300,"thumbnail_height":300}