U.S. Department of Education

U.S. Department of Education

On a well-known hacking site, there was an advertisement for data for sale that purportedly came from the US Department of Education (Ed.gov).

The exposed information includes ID, UserID, UserName, MobileNumber, LevelID, ConsumerID, Type, FeedBack, SubjectID, Subject, Replied, Token, Completed, Date, Updated, Deleted, and Origin.

The vendor stated that he is seeking an undisclosed sum in XMR.

Source: https://www.databreaches.net/listing-for-sale-of-u-s-education-department-data-may-not-be-what-you-expect/

TPRM report: https://scoringcyber.rankiteo.com/company/usedgov

"id": "usd103420823",
"linkid": "usedgov",
"type": "Data Leak",
"date": "08/2023",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Education',
                        'location': 'United States',
                        'name': 'US Department of Education',
                        'type': 'Government'}],
 'data_breach': {'type_of_data_compromised': ['ID',
                                              'UserID',
                                              'UserName',
                                              'MobileNumber',
                                              'LevelID',
                                              'ConsumerID',
                                              'Type',
                                              'FeedBack',
                                              'SubjectID',
                                              'Subject',
                                              'Replied',
                                              'Token',
                                              'Completed',
                                              'Date',
                                              'Updated',
                                              'Deleted',
                                              'Origin']},
 'description': 'An advertisement on a well-known hacking site offered data '
                'for sale that purportedly came from the US Department of '
                'Education (Ed.gov). The exposed information includes ID, '
                'UserID, UserName, MobileNumber, LevelID, ConsumerID, Type, '
                'FeedBack, SubjectID, Subject, Replied, Token, Completed, '
                'Date, Updated, Deleted, and Origin. The vendor stated that he '
                'is seeking an undisclosed sum in XMR.',
 'impact': {'data_compromised': ['ID',
                                 'UserID',
                                 'UserName',
                                 'MobileNumber',
                                 'LevelID',
                                 'ConsumerID',
                                 'Type',
                                 'FeedBack',
                                 'SubjectID',
                                 'Subject',
                                 'Replied',
                                 'Token',
                                 'Completed',
                                 'Date',
                                 'Updated',
                                 'Deleted',
                                 'Origin']},
 'motivation': 'Financial Gain',
 'ransomware': {'ransom_demanded': 'Undisclosed sum in XMR'},
 'title': 'Data For Sale from US Department of Education',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.