This incident is NOT related to ClassLink.
Beginning July 5, 2023 ClassLink has been monitoring and assisting schools investigate posts of directory data (Posted Directory Data) made on https://breachforums.vc/ by a threat actor named “FentanylTroia”.
[UPDATED ON 7/13] Collectively, the posts now impact 223+ organizations, nearly all of which are K12 or Higher Ed orgs, and the directory data for 4.5+ million people (for nearly all the institutions, only name and emails were posted, thus the description ‘directory data’… most in the industry do not consider name and email to be ‘Personally Identifiable Information’ (PII)).
What We Know
What Do We Recommend As the Next Steps?
Although ClassLink did NOT cause this incident, we remain committed to supporting our school organizations and will continue to provide updates as we are made aware of them. Please reach out to Jeff Janover, VP of Security and Interoperability at firstname.lastname@example.org with any questions.