Topic: student privacy
-
Student admissions site bug leaked children's data
A major security flaw on the Ravenna Hub admissions platform exposed sensitive personal data of children and families, including names, addresses, and photos, due to an insecure direct object reference (IDOR) vulnerability. The platform's developer, VenturEd Solutions, quickly fixed the issue but...
Read More » -
FTC Orders Illuminate to Delete Student Data in Landmark Settlement
The FTC has proposed a settlement requiring Illuminate Education to delete vast amounts of student data and overhaul its security, following a 2021 breach that compromised millions of students' sensitive information. The breach occurred due to inadequate security, including using a former employe...
Read More »