School management firm Active Network has revealed a data breach. The incident primarily took place due to the attackers compromising the security of Blue Bear – a school accounting platform. As a result of the attack, the attackers managed to pilfer payment card details.
Active Network Discloses Data Breach
Reportedly, the software firm Active Network has recently disclosed a security breach. As evident from the firm’s security notice, Active Network suffered a data breach exposing important user details to the attackers.
Specifically, the incident didn’t directly impact Active Networks systems. Rather, it took place as the perpetrators breached the school management software Blue Bear. As elaborated in the notice,
We recently became aware of a security incident involving Blue Bear Software, a software platform that facilitates administration and management of school accounting, student fees, and online stores on behalf of educational institutions.
The attack on Blue Bear platforms lasted for over a month, i.e., from October 1, 2019, to November 13, 2019. Though, they haven’t explained much about how the breach occurred, and who whom the attackers were.
They suspect that the incident might have exposed customers’ payment card data, including names, credit/debit card numbers, dates of expiration, and security codes. In addition, the attackers may also have accessed users’ Blue Bear account usernames and passwords.
Other personal details such as the driver’s license numbers, Social Security Numbers, and other government ID numbers remained unaffected during the incident.
Free Credit Monitoring To Affectees
Upon discovering the breach, the firm swiftly started investigations and took security measures to resolve the matter. They are also offering free identity monitoring services to the affected users.
Although, for now, the attack is over, the firm has urged everyone to vigilantly monitor transactions involving their payment cards.
Let us know your thoughts in the comments
Latest posts by Abeerah Hashim (see all)
- High-Severity XSS Flaw In TikTok Could Allow Account Takeover - November 24, 2020
- LidarPhone Attack Transforms Smart Vacuum Cleaners Into Spying Tools - November 23, 2020
- Google To Add End-to-End Encryption To Android Messages App - November 23, 2020