The California Office of the Attorney General reported a data breach involving Da Vinci Schools on May 30, 2017. The breach occurred on April 4, 2017, when a computer security researcher accessed student information stored with Schoolzilla due to a configuration error. The affected data included 2015 test scores and personally identifiable information, though the exact number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-69171
TPRM report: https://www.rankiteo.com/company/schoolzilla
"id": "sch446072925",
"linkid": "schoolzilla",
"type": "Breach",
"date": "6/2015",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Education',
'location': 'California',
'name': 'Da Vinci Schools',
'type': 'Educational Institution'}],
'attack_vector': 'Configuration Error',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['2015 test scores',
'Personally Identifiable '
'Information']},
'date_detected': '2017-04-04',
'date_publicly_disclosed': '2017-05-30',
'description': 'A data breach occurred at Da Vinci Schools on April 4, 2017, '
'when a computer security researcher accessed student '
'information stored with Schoolzilla due to a configuration '
'error.',
'impact': {'data_compromised': ['2015 test scores',
'Personally Identifiable Information']},
'post_incident_analysis': {'root_causes': 'Configuration Error'},
'references': [{'date_accessed': '2017-05-30',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Computer Security Researcher',
'title': 'Data Breach at Da Vinci Schools',
'type': 'Data Breach',
'vulnerability_exploited': 'Configuration Error'}