Skip to main content
photo of classroom at school

National Student Clearinghouse Data Breach Investigation

Thank you for considering The Lyon Firm. At this time, we are not accepting plaintiffs related to this specific consumer issue. However, if you would like to be contacted in the future, please complete the contact form. By completing the form, you will be contacted if the Firm begins accepting new cases on this matter, and you will also be included in firm news alerts related to important consumer safety and privacy issues to help keep you informed about related issues.

The Lyon Firm is currently reviewing data breach claims related to the MOVEit transfer attack that has impacted millions worldwide. Recent reports suggest that over 800 schools have also been affected, according to the National Student Clearinghouse (NSC).

Our class action data theft lawyers can determine if you are eligible to file a data breach lawsuit or join a class of existing plaintiffs. If you have received a data breach notification letter from National Student Clearinghouse or another school, contact our attorneys to discuss your next steps.

In a notification letter filed with the Office of the California Attorney General, National Student Clearinghouse said hackers gained access to its MOVEit managed file transfer server on May 30 and stole files containing a range of personal data.

The compromised personally identifiable information may have contained names, dates of birth, contact information, Social Security numbers, student ID numbers, and school  records.

According to the data breach notifications, the personal data exposed in the attack varies for each affected individual. In August, NSC revealed in a data breach filing with the Office of Maine’s attorney general that over 50,000 people were impacted by the incident, though those numbers could grow as the investigation unfolds.

What is the MOVEit Data Security Incident?

The Clop ransomware gang has claimed responsibility for the MOVEit attacks that began on May 27, targeting a zero-day security vulnerability in the MOVEit Transfer secure file transfer platform. Clop has been extorting organizations that fell victim to the attacks, exposing their names on the group’s dark web site.

What To Do as a Victim of a Data Breach?

After you realize you are a victim of a security breach, you can contact a lawyer and file a claim against a company for failing to protect the data they collected and stored. All schools and related organizations must exercise reasonable care in protecting student information.

Individuals impacted by the National Student Clearinghouse data breach incident:

Our privacy attorneys would like to speak with you about your legal rights and potential remedies in response to this data breach.

If you were impacted by a security breach, you may consider taking the following steps:

  • Review the notice you received and retain a copy
  • Change your passwords and security questions for related online accounts
  • Review account statements and credit reports for signs of fraud or identity theft
  • Contact a credit bureau to request a temporary fraud alert

Our data breach attorneys represent plaintiffs nationwide and have settled multi-million dollar recoveries on behalf of victims. If you or a loved one has received notice of an online security incident affecting you, contact a data theft lawyer for a free consultation.