Brightly Software last week started informing roughly three million individuals that their personal information might have been compromised in a recent data breach.
A Siemens subsidiary, Brightly provides asset management solutions, including CMMS, EAM, IoT remote monitoring, strategic asset management, and more. The company claims to have over 12,000 clients worldwide, across different industries.
On May 11, the company started sending out notification letters to its SchoolDude users, to flag a cybersecurity incident that occurred in late April.
SchoolDude is an online platform offering various software solutions for educational institutions and technology professionals.
As part of the cyberattack, the company says in the notification letter, a copy of which was submitted to the Maine Attorney General’s Office, an unauthorized party obtained “certain account information from the SchoolDude user database”.
The stolen information includes names, email addresses, phone numbers, school district names, and account passwords.
According to Brightly, the information of both current and former SchoolDude users was compromised during the incident.
The company started an investigation into the incident immediately after discovering it, notified law enforcement, and prompted a password reset for all SchoolDude user accounts.
The impacted individuals who might be using the SchoolDude password for other online accounts are advised to change the password on those accounts as well.
“Brightly is notifying all customers whose users were affected by the incident, as well as informally notifying those users directly so that they may take steps to protect against potential misuse of their account information,” the company told the Maine Attorney General.
Related: 400,000 Users Hit by Data Breach at Media Player Maker Kodi
Related: Yum Brands Discloses Data Breach Following Ransomware Attack
Related: 4.8 Million Impacted by Data Breach at TMX Finance
https://www.securityweek.com/brightly-software-notifying-3-million-schooldude-users-of-data-breach/