School Management Software Firm Active Network Reveals Data Breach

School management firm Active Network has revealed a data breach. The incident primarily took place due to the attackers compromising the security of Blue Bear – a school accounting platform. As a result of the attack, the attackers managed to pilfer payment card details.

Active Network Discloses Data Breach

Reportedly, the software firm Active Network has recently disclosed a security breach. As evident from the firm’s security notice, Active Network suffered a data breach exposing important user details to the attackers.

Specifically, the incident didn’t directly impact Active Networks systems. Rather, it took place as the perpetrators breached the school management software Blue Bear. As elaborated in the notice,

We recently became aware of a security incident involving Blue Bear Software, a software platform that facilitates administration and management of school accounting, student fees, and online stores on behalf of educational institutions.

The attack on Blue Bear platforms lasted for over a month, i.e., from October 1, 2019, to November 13, 2019. Though, they haven’t explained much about how the breach occurred, and who whom the attackers were.

They suspect that the incident might have exposed customers’ payment card data, including names, credit/debit card numbers, dates of expiration, and security codes. In addition, the attackers may also have accessed users’ Blue Bear account usernames and passwords.

Other personal details such as the driver’s license numbers, Social Security Numbers, and other government ID numbers remained unaffected during the incident.

Free Credit Monitoring To Affectees

Upon discovering the breach, the firm swiftly started investigations and took security measures to resolve the matter. They are also offering free identity monitoring services to the affected users.

Although, for now, the attack is over, the firm has urged everyone to vigilantly monitor transactions involving their payment cards.

Let us know your thoughts in the comments

Related posts

NachoVPN Attack Risks Corporate VPN Clients

Sweet Security Introduces Evolutionary Leap in Cloud Detection and Response, Releasing First Unified Detection & Response Platform

Anti-Spam WordPress Plugin Vulnerabilities Risked 200K+ Websites