Chegg Breach - 2018
Date: January, 2018Chegg is a school-help platform that millions of high school and college students use. The site even has features that allow students to look for college scholarships tailored to them.
What Was the Breach?
The breach was a leak and sale of tens of millions of records, including Chegg employees and users. The leaked data included emails, addresses, and names in most cases, while special cases involved the victims’ social security numbers, disability data, religion, sexual orientation, and parental income. This data was only associated with students who input such for the scholarship finder on the site.
How Did the Breach Occur?
The breach occurred when, according to The New York Times, Chegg left its systems without password verification, allowing the hacker to easily access millions’ personal information. In November 2022, four years after the breach, the FTC made the same claim and filed a class action lawsuit, resulting in a settlement with Chegg, and the company then promised to input higher-level security measures.
When Did This Breach Occur?
This breach occurred in 2018.
Who Does the Breach Impact?
The breach appears to have impacted every Chegg user and employee. Most of Chegg’s customers are minors; the site is tailored specifically to college students and high schoolers, meaning many victims are very young.
How Many Files Does the Breach Affect?
The breach affects an approximated number of 40 million individuals. While the main concern for most people is the minors involved, one must also consider the employees and parents affected by the breach.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...