Morgan Hill Unified School District - breach notification
NOTICE OF DATA BREACH
Dear <> <> <> <>,
Morgan Hill Unified School District recognizes the importance of protecting the information we maintain. We are writing
to inform you of an incident that may have involved some of your personal information. This notice explains the incident,
measures we have taken, and additional steps you may consider taking in response.
What Happened?
We completed an investigation into an incident involving unauthorized access to an employee’s email account. Upon
discovering the incident, we immediately took steps to secure the account, a cybersecurity firm was engaged, and an
investigation was conducted. The evidence showed unauthorized connections to the employee’s email account between
September 11, 2022 and October 11, 2022.
What Information was Involved?
Because the evidence did not show which specific emails or attachments were viewed or accessed by the unauthorized
actor, we conducted a careful review of the contents of the accounts. On December 26, 2022, we determined that an email
or attachment contained your <>.
What You Can Do.
We wanted to notify you of this incident and to assure you that we take it seriously. We have arranged for you to receive
a complimentary one-year membership to Experian’s® IdentityWorksSM credit monitoring service. This product helps
detect possible misuse of your information and provides you with identity protection services focused on immediate
identification and resolution of identity theft. IdentityWorksSM is completely free to you, and enrolling in this program will
not hurt your credit score. For more information on identity theft prevention and IdentityWorksSM, including instructions
on how to activate your complimentary one-year membership, as well as some additional steps you can take in response,
please see the additional information provided in this letter.
What We Are Doing.
From the moment that we became aware of the incident, we worked closely with law enforcement and cybersecurity
professionals. We regret that this occurred and apologize for any inconvenience. To help prevent something like this from
happening again, we have taken steps to enhance our existing security measures.
Dear <> <> <> <>,
Morgan Hill Unified School District recognizes the importance of protecting the information we maintain. We are writing
to inform you of an incident that may have involved some of your personal information. This notice explains the incident,
measures we have taken, and additional steps you may consider taking in response.
What Happened?
We completed an investigation into an incident involving unauthorized access to an employee’s email account. Upon
discovering the incident, we immediately took steps to secure the account, a cybersecurity firm was engaged, and an
investigation was conducted. The evidence showed unauthorized connections to the employee’s email account between
September 11, 2022 and October 11, 2022.
What Information was Involved?
Because the evidence did not show which specific emails or attachments were viewed or accessed by the unauthorized
actor, we conducted a careful review of the contents of the accounts. On December 26, 2022, we determined that an email
or attachment contained your <>.
What You Can Do.
We wanted to notify you of this incident and to assure you that we take it seriously. We have arranged for you to receive
a complimentary one-year membership to Experian’s® IdentityWorksSM credit monitoring service. This product helps
detect possible misuse of your information and provides you with identity protection services focused on immediate
identification and resolution of identity theft. IdentityWorksSM is completely free to you, and enrolling in this program will
not hurt your credit score. For more information on identity theft prevention and IdentityWorksSM, including instructions
on how to activate your complimentary one-year membership, as well as some additional steps you can take in response,
please see the additional information provided in this letter.
What We Are Doing.
From the moment that we became aware of the incident, we worked closely with law enforcement and cybersecurity
professionals. We regret that this occurred and apologize for any inconvenience. To help prevent something like this from
happening again, we have taken steps to enhance our existing security measures.
