The Bexley City School district was notified of a ransomware data breach experienced not by us, but by one of our contract organizations called Battelle for Kids.
It is important to note that no student Social Security numbers ever were shared with Battelle for Kids. Rather, the information Battelle for Kids gathers includes a student’s name, grade level, gender, state student identification number, birth date, and assessment results, as well as school class and teacher name. This data is used to evaluate students’ state test results.
Specifically, the compromised data affects the following years and grades, but not all students were impacted:
2010-2011: Grades 2-7, 9-12;
2011-2012: Grades 2-12;
2012-2013: Grades 2-7, 9-12;
2013-2014: Grades 2-12
2014-2015: Grades 1-12
2015-2016: Grades K-12
2016-2017: Grades K-8
While the specific number of affected school districts wasn’t shared with us, we know that some districts in Central Ohio and others in our state were affected, as well as districts outside of Ohio, including the Chicago Public Schools.
Battelle for Kids informed us that they have taken steps to ensure this type of breach does not happen again. Additionally, they are monitoring websites to detect whether any of the affected data is released publicly. They promised we will be notified if they find any of our exposed student data elsewhere on the web.
We will notify you again if we receive further information from Battelle for Kids or the Ohio Department of Education regarding this matter. You may contact [email protected] with questions.