The Los Angeles Unified School District (LAUSD) is currently facing a major data breach, with millions of students, teachers, and staff members affected. The breach was carried out by a hacker known as “Satanic” from the group “The Satanic Cloud,” who leaked personal, contact, and location details on Breach Forums.
The leaked data, totaling 10GB in size, has now spread to various hacking and cybercrime platforms, including Russian-speaking sites and database leak-related Telegram channels. This breach has impacted over 24.16 million students, almost 55,000 teachers, and staff members, with approximately 1.95 million email addresses being exposed.
The dataset contains a vast amount of personal information, including gender, ethnicity, zip codes, phone numbers, email addresses, home addresses, and even immigration status for students. For teachers and staff, details such as gender, ethnicity, date of birth, employment status, education/qualification, and years of experience have also been compromised.
Further investigation revealed that this breach was Snowflake-related, with the hacker sharing login credentials for the Snowflake account used in the attack. The hacker hinted at more breaches to come, exploiting the same vulnerability that led to the Ticketmaster data breach. The LAUSD confirmed that a third-party vendor storing stolen data on Snowflake was the root cause of the breach.
While the leaked records do not include passwords or Social Security Numbers, the exposure of children’s contact details and locations raises serious concerns. Parents, teachers, staff, and students are urged to remain vigilant for any potential malicious activities, such as phishing scams or identity theft attempts.
In light of this breach, LAUSD faces significant challenges in safeguarding the personal information of its students, teachers, and staff. The breach serves as a reminder of the security risks posed by third-party vendors and the importance of implementing robust cybersecurity measures to protect sensitive data from future attacks.