Relay Graduate School Of Education data breach exposes social security numbers

Relay Graduate School of Education, a nonprofit institution focused on training educators, experienced a significant data breach that could potentially impact thousands of individuals. The breach was discovered on December 11, 2024, and involved sensitive personal information. According to the disclosure, the breach affected a total of 22,769 individuals across the United States, including 2,278 residents in Texas and 11 residents in Maine.

The exposed information includes:

• Full name
• Contact information (mailing address, email address, phone number)
• Date of birth
• Social Security numbers

The breach was initially disclosed to the Vermont Attorney General's office on January 10, 2025. Subsequent filings were made to the Maine Attorney General's office on January 15, 2025 and to the Texas Attorney General's office on January 14, 2025.

Relay Graduate School of Education also notified affected consumers via written communication through U.S. mail on January 10, 2025.

While the exact method of the breach has not been disclosed, the inclusion of encrypted Social Security numbers indicates that the attackers may have targeted a database containing sensitive personal data. The severity of this breach lies in the potential for identity theft if the encrypted Social Security numbers are decrypted.

Relay Graduate School's response

Relay Graduate School of Education has taken steps to notify affected individuals promptly. The institution sent written notices via U.S. mail to all impacted consumers on January 10, 2025. Additionally, the breach was reported to the appropriate state authorities, including the Maine and Texas Attorney General offices.

The school has not yet disclosed any specific measures it has implemented to prevent future breaches or whether it has involved cybersecurity experts to investigate the incident. However, the notification to consumers suggests that the institution is working to address the issue and comply with legal requirements.

Steps to take if you are affected by the data breach

If you have received a notification from Relay Graduate School of Education about this breach, it is essential to take immediate action to protect yourself from potential identity theft or fraud. Here are some steps you should consider:

1. Monitor your credit reports: Obtain free copies of your credit reports from the three major credit bureaus (Equifax, Experian, and TransUnion) by visiting AnnualCreditReport.com. Look for any unauthorized or suspicious activity.
2. Place a fraud alert or credit freeze: A fraud alert notifies creditors to take extra steps to verify your identity before extending credit. Alternatively, a credit freeze restricts access to your credit report, making it harder for identity thieves to open accounts in your name.
3. Watch for phishing attempts: Be cautious of unsolicited emails, phone calls, or messages requesting personal information. Scammers may use the breach as an opportunity to impersonate Relay Graduate School of Education.
4. Consider identity theft protection services: If you are concerned about the potential misuse of your information, consider enrolling in an identity theft protection service. Some services offer credit monitoring, identity restoration, and insurance coverage for certain losses.
5. Stay informed: Keep an eye on updates from Relay Graduate School of Education regarding the breach. They may provide additional resources or support for affected individuals.
6. File a report if needed: If you suspect that your information has been misused, file a report with the Federal Trade Commission (FTC) at IdentityTheft.gov.

Taking these steps can help you mitigate the risks associated with this breach and safeguard your personal information.