Here’s another k-12 data security incident that does not appear to have made news or to experience been revealed on a school district’s website (at least as far as DataBreaches.net can determine): On behalf of Spotswood Public Schools in New Jersey, Baker & Hostetler notified the� me Attorney General’s Office that Spotswood experienced a ransomware incident on September 11. The district’s notification omits some specific details such as when they first discovered they had a problem, whether files were locked, whether functions were impaired, and whether student data was exfiltrated or only employee information, or both. Nor does the notification indicate who the threat actors were, so there is a set we come not live at this point. On october 27, the district learned that personal info for one Maine resident was affected and therefore notified Maine. Had there been no Maine resident, we mightiness not have learned of this incident at this point at all. All told, according to the district’s notification to Maine, 424 multitude were impacted by the incident, where the files included the individuals figure and one or more of the following data elements: social Security number, drivers licence number, and/or financial account information. Those affected are being offered single year of credit monitoring, hoax consultation, and identity theft restoration services through Kroll. The notification to the state says that letters will be going out on november 28, but that may live a typo as an adherence (download link) mentions november 18. Because DataBreaches.net was unable to find any notice on the district’s web site,� an email inquiry was sent to their external counsel asking whether any students were impacted by the incident. no reply was immediate received. This stake will live updated if more info becomes available.