Learnosity, an e-learning platform with over 40 million users, recently reported a cybersecurity incident. On June 17, 2024, the company informed affected individuals about a data security breach that might have exposed their information. The publicly shared notice did not specify which data was involved but indicated that the company had taken immediate steps to secure its systems and investigate the incident.
The breach, according to Learnosity, was the result of a phishing attack targeting their HR staff. Although the attack led to the viewing of an employee list, the company asserts that no user data or product data was accessed or downloaded. The affected HR staff member had no access to the broader user data, minimizing the impact of the breach.
To address the situation and comply with legal obligations, Learnosity has offered 12 months of free credit monitoring services to the affected individuals. The company has emphasized that their prompt actions were taken out of caution and to ensure transparency about the incident.
Learnosity, recognized by Time Magazine as a leading ed-tech company, recently acquired Questionmark, a British online assessment software company. Despite the phishing attack affecting both entities, Learnosity asserts that no private user data was compromised, and they have updated their security measures to prevent future incidents.
Reference:
