+1 (802) 355-0158
  6 min reads

Cybertraps for Educators Digest

Above the Fold: Another Massive Student Data Breach ~ 2. The State of K-12 Cybersecurity: Not Great ~ 3. UT Abuse Lawsuit Alleges District Policy Failures ~ 4. NJ Mandates Digital Literacy for Students ~ 5. Have You Been Dress-Coded?

Cybertraps for Educators Digest
Golden Hour [Frederick Lane, 2022]

By Frederick Lane ~ 6 January 2023

This C4E Digest is 1,347 words, or approximately a 6-minute read.

💾 Above the Fold: Another Massive Student Data Breach

Clouds and a Starry Sky [Frederick Lane, 2022]
Clouds and a Starry Sky [Frederick Lane, 2022]

Cloud storage is wonderful ... except when it isn't. A research team at vpnMentor, an online privacy firm, recently discovered that education publisher McGraw Hill exposed the personal data of more than 100,000 students.

  • McGraw Hill stored the data in Amazon Web Services S3 buckets, a widely-popular type of cloud storage.
  • Unfortunately, McGraw Hill misconfigured the settings of its data buckets, allowing anyone with a web browser access to more then 22 terabytes of student data and teaching materials.
  • The misconfiguration may have allowed access as early as 2015.

Slow response: In its report, vpnMentor said that it contacted McGraw Hill multiple times about the security breach before the company responded.

Implications: A possible seven-year leak of confidential student and teacher information raises a number of security concerns.

Press ESC to close.

© 2024 The Cybertraps Newsletter - All Rights Reserved

You've successfully subscribed to The Cybertraps Newsletter
Great! Next, complete checkout for full access to The Cybertraps Newsletter
Welcome back! You've successfully signed in
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info is updated.
Billing info update failed.
Your link has expired.