Personal information of parents, staff at 127 schools accessed in data security breach

The Ministry of Education ( MOE ) announced on Friday ( Apr 19 ) that a data breach at one of its vendors has resulted in the “unauthorised access” of the names and email addresses of parents and staff from five primary and 122 secondary schools.  

Mobile Guardian reportedly notified MOE that its; customer management site had been breached on Wednesday, with the tragedy occuring at the bank’s office in Surrey, United Kingdom.  

Mobile Guardian is a device management app ( DMA ) installed on personal learning devices used by students, like  tablets and Google Chromebooks. Kids can control their kids ‘ device usage through limiting applications or websites and display time using the software.  

MOE added that the data breach did not affect its own unit management app because it was kept safe for use and distinct from Mobile Guardian’s user administration portal.

No illegal exposure to the MOE DMA has been found. Kids who use the iPad or Laptop as usual can use the DMA, it said.

All damaged parents and teachers will be notified of the data breach event by the government as well as the schools involved.  

They are also advised to be on top of any hacking emails that might be sent to them, MOE continued.

The government said it has   expressed its problems to the Mobile Guardian and a  authorities record has been lodged.  

In response to the event, Mobile Guardian has implemented additional safety steps, such as locking down all administrative records.

The mobile device management application organization is also collaborating with researchers in information technology surveillance to find out how the data breach occurred.

In November 2020, Mobile Guardian was appointed as MOE’s standard vendor for mobile device management solutions.  

CNA has contacted the ministry, the Personal Data Protection Commission ( PDPC ) and Mobile Guardian for more information.