A major data breach occurred inside a New York City school, putting sensitive information of about 45,000 students, school staff and service providers at risk, according to local officials.

The city’s Department of Education announced Friday that sensitive data including social security numbers, dates of birth, student OSIS numbers and employee IDs had been leaked. The data breach reportedly affected approximately 19,000 documents accessed through the MOVEit file transfer system, which has reportedly been targeted in a global hacking campaign. The documents included student assessments, progress reports, and records of DOE staff’s vacation status, The New York Post reported. report.

“We recently learned of a security vulnerability in third-party file-sharing software MOVEit. This vulnerability affects both commercial and government customers around the world.” City DOE spokeswoman Nathaniel Styer said in a statement. “Working with the New York City Cyber ​​Command, we took immediate remedial action. An internal investigation revealed that certain of his DOE files were affected.” (Related: Hundreds of students’ mental health records leaked online after dark web hack)

New York City school hacked exposing classified information of 45,000 students: DOE https://t.co/HAAlEIYR3i pic.twitter.com/bUBm6gJzm5

— New York Post (@nypost) June 24, 2023

The DOE is in contact with the NYPD and the FBI to help investigate the cyberattack. The exact number of employees affected and the exact timing of the cyberattack were not disclosed as of Saturday, but the DOE said there was no “sustained unauthorized access” to its systems, the news agency said.

The Supervisory Administrators Union Council has contacted the Prime Minister’s team to mitigate the impact of the breach and is seeking adequate credit fraud protections for affected individuals. Those affected by the breach will be provided access to identity monitoring services, officials said, according to the report.