The Minnesota Department of Education is the regulatory body that oversees all the public schools in the state. The organization manages some of the state-funded education policies and works with data from many different students. All that data was put at risk when the Department of Education got hacked in late May 2023.
The MN Department of Education breach occurred because the C10p gang learned how to hack into the MOVEit file transfer tool. The gang gathered data on hundreds of different companies, including major ones like BBC, British Airlines, and also the MN Department of Education. The parent company behind MOVEit released a patch to protect against the exploit, but that was after most of the information was already taken.
It's believed the breach occurred in the middle of May 2023. During that month, a substantial amount of information was taken from many different companies, but many students lost their data because of this breach.
Nearly 95,000 students in public schools throughout Minnesota lost their data because of this breach. Students that got placed into foster care, some that qualified for the pandemic electronic benefits transfer program, and also others taking the PSEO Classes at Hennepin Technical College were all exposed to this breach.
We know that 24 files with student information were accessed in this breach. We are unsure if any additional information was taken during the breach or not.