Security breach at Duneland School Corp



Duneland School Corporation officials announced Thursday that its employment records, including names, birthdays and Social Security numbers, were subject to a data breach in late October and urged current and former employees to keep a watchful eye for any unauthorized activity regarding their health insurance.

The school corporation identified what Assistant Supt. Robert McDermott called “a security incident” on Oct. 27 that resulted in the unavailability of certain systems within the Duneland computer network, according to a release.

“Duneland immediately began to investigate, a cybersecurity firm was engaged, law enforcement was contacted, and steps were taken to address the incident and restore operations,” the release stated.

“Duneland also implemented additional safeguards and technical security measures, including multi-factor authentication for all user accounts, to further protect the data it maintains.”

School officials determined that “an unauthorized person” obtained access to the Duneland systems between Oct. 21 and Oct. 27. After further investigation, officials discovered that certain files may have been acquired by the unauthorized person.

“Duneland thoroughly reviewed those files and determined that they contained information related to Duneland’s self-insured health plan and general employment records, including names, dates of birth, Social Security numbers, driver’s license numbers if they were provided to Duneland, and benefits information,” according to the release.

It is not immediately clear how many people may have been affected, or what the status is of the investigation by law enforcement.

Corporation officials recommend current and former employees, and their beneficiaries and dependents, remain vigilant for signs of unauthorized activity by reviewing any statements that they receive relating to their health insurance.

“If they identify any charges or activity that they did not authorize, please contact the insurer or provider immediately,” according to the release.

Duneland is in the process of notifying individuals whose information may have been involved and is offering them a complimentary membership to Kroll Identity Monitoring, which includes credit monitoring, fraud consultation and identity theft restoration services.

“Duneland sincerely regrets that the incident occurred and apologizes for any inconvenience,” officials said.

Additional information is available at 490 or by calling (855) 545-2516 between 8 a.m. and 5:30 p.m. Monday through Friday, excluding any major U.S. holidays.

Leave a Reply

Your email address will not be published. Required fields are marked *

You have 2 more free access views left