{"id":267630,"date":"2026-06-08T14:17:00","date_gmt":"2026-06-08T18:17:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/08\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/"},"modified":"2026-06-08T14:55:25","modified_gmt":"2026-06-08T18:55:25","slug":"ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/08\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/","title":{"rendered":"FTC orders Illuminate Education to bolster data security after breach impacting 10M students"},"content":{"rendered":"<p><a href=\"https:\/\/statescoop.com\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/\">FTC orders Illuminate Education to bolster data security after breach impacting 10M students<\/a><\/p>\n<p><a href=\"https:\/\/statescoop.com\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/\">https:\/\/statescoop.com\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-08 14:17:00<\/a><\/p>\n<p>Source Domain: <a href=\"statescoop.com\">statescoop.com<\/a><\/p>\n<p>The Federal Trade Commission finalized an order Friday against K-12 software vendor Illuminate Education, directing the company to improve its data security measures and barring it from misrepresenting its data privacy practices or breach notification times after a breach in 2021 impacted the data of more than 10 million current and former students.<\/p>\n<p>The final order, which the FTC said was modified following a period of public comment, comes after the federal agency found that Illuminate, which provides student grading and attendance software, allegedly failed to implement reasonable security controls. These failures, the FTC alleged, were contributing factors in a December 2021 cyberattack on the company, which exposed the personal data of about 10.1 million current and former students across dozens of school districts in several states, including New York City\u2019s large public school system.<\/p>\n<p>In the attack, a hacker allegedly used credentials of a former employee to access the data, which included students\u2019 email and mailing addresses, dates of birth, student records, and health-related information. The FTC also alleged that Illuminate ignored security warnings dating back to 2020, such as those from a third-party vendor about security vulnerabilities on its network. Illuminate\u2019s security woes included failing to implement reasonable access controls that safeguard students\u2019 personal information, effective threat detection and response, vulnerability monitoring, and patch management practices.<\/p>\n<p>Additionally, the FTC claimed the company did not inform some school districts of the breach in a timely manner, with some not notified until two years after the breach.<\/p>\n<p>Instead of a monetary settlement, the agency has directed the company to show that it\u2019s making improvements to its data practices. The order directs the company to establish a comprehensive data security program and to limit the collection and retention of certain consumer&#8230;<\/p>\n<p><a href=\"https:\/\/statescoop.com\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>FTC orders Illuminate Education to bolster data security after breach impacting 10M students https:\/\/statescoop.com\/ftc-orders-illuminate-education-to-bolster-data-security-after-breach-impacting-10m-students\/ Publish&#8230;<\/p>\n","protected":false},"author":1,"featured_media":267631,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/statescoop.com\/wp-content\/uploads\/sites\/6\/2026\/06\/GettyImages-2242475840.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,28,96,57,27],"class_list":["post-267630","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-data-security","tag-hackerexploit","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267630"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=267630"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267630\/revisions"}],"predecessor-version":[{"id":267632,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267630\/revisions\/267632"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/267631"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=267630"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=267630"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=267630"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}