On a well-known hacking site, there was an advertisement for data for sale that purportedly came from the US Department of Education (Ed.gov).
The exposed information includes ID, UserID, UserName, MobileNumber, LevelID, ConsumerID, Type, FeedBack, SubjectID, Subject, Replied, Token, Completed, Date, Updated, Deleted, and Origin.
The vendor stated that he is seeking an undisclosed sum in XMR.
TPRM report: https://scoringcyber.rankiteo.com/company/usedgov
"id": "usd103420823",
"linkid": "usedgov",
"type": "Data Leak",
"date": "08/2023",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Education',
'location': 'United States',
'name': 'US Department of Education',
'type': 'Government'}],
'data_breach': {'type_of_data_compromised': ['ID',
'UserID',
'UserName',
'MobileNumber',
'LevelID',
'ConsumerID',
'Type',
'FeedBack',
'SubjectID',
'Subject',
'Replied',
'Token',
'Completed',
'Date',
'Updated',
'Deleted',
'Origin']},
'description': 'An advertisement on a well-known hacking site offered data '
'for sale that purportedly came from the US Department of '
'Education (Ed.gov). The exposed information includes ID, '
'UserID, UserName, MobileNumber, LevelID, ConsumerID, Type, '
'FeedBack, SubjectID, Subject, Replied, Token, Completed, '
'Date, Updated, Deleted, and Origin. The vendor stated that he '
'is seeking an undisclosed sum in XMR.',
'impact': {'data_compromised': ['ID',
'UserID',
'UserName',
'MobileNumber',
'LevelID',
'ConsumerID',
'Type',
'FeedBack',
'SubjectID',
'Subject',
'Replied',
'Token',
'Completed',
'Date',
'Updated',
'Deleted',
'Origin']},
'motivation': 'Financial Gain',
'ransomware': {'ransom_demanded': 'Undisclosed sum in XMR'},
'title': 'Data For Sale from US Department of Education',
'type': 'Data Breach'}