ESD A.I CyberSecurity Scoring
02/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Ellensburg School District in 2026.
No incidents recorded for Ellensburg School District in 2026.
No incidents recorded for Ellensburg School District in 2026.
Education Administration Programs
NIIT Ltd. is a leading skills & talent development corporation, set up in 1981 to help the nascent IT industry overcome its human resource challenges. To meet the manpower challenges in BFSI sector, NIIT established Institute for Finance, Banking, and Insurance (IFBI), India's premier banking training institute in 2006. The company today ranks amongst the world's leading training organizations owing to its vast and comprehensive array of talent development programs. NIIT Ltd. delivers a diverse range of learning and talent development programs to millions of individual and corporate learners in futuristic domains through its various businesses including NIIT Digital, StackRoute, RPS Consulting, Institute of Finance Banking & Insurance (IFBI), TPaaS and Sales & Service Excellence (SSE). • The robust NIIT Digital platform enables distinctive learning experiences for corporate and individual learners. • IFBI is a leading provider of learning services for early career as well as working professionals for the BFSI sector in India. • NIIT StackRoute is a digital transformation partner for corporates to build multi-skilled full stack professionals in advanced technologies at scale. • RPS Consulting is a leading provider of training programs on emerging digital technologies for experienced technology professionals. • Talent Pipeline as a Service (TPaaS) helps organizations address the challenge of securing mid to long term talent across Technology, Marketing, and Sales Roles. • NIIT SSE has deep expertise in empowering businesses in creating an eco- system for talent development to enhance key competencies & elevate performance to achieve higher business outcomes.
As leaders in the education staffing space since 2000, ESS specializes in placing qualified staff in daily, long-term, and permanent K-12 school district positions, including substitute teachers, paraprofessionals, and other school support staff. Over the last 24 years, we have innovated education staffing to provide dynamic solutions to school districts and professional opportunities to passionate educators. Our team serves over 5 million students with a pool of 100,000 substitute and permanent employees nationwide. Internally, the ESS team is comprised of 550 individuals with a passion for education, working together to ensure our 900+ partner districts experience valuable education every day. Visit ESS.com to learn more and help to improve education for every student, every day.
More than 1,000 top employers trust Bright Horizons® (NYSE: BFAM) for proven solutions that support employees, advance careers, and maximize performance. From on-site child care that amplify your culture, back-up care to handle disruptions, and education programs that build critical skills, our services help you achieve more. Find more at brighthorizons.com/at-work.
Broward County Public Schools (BCPS) is the sixth largest public school system in the United States, the second largest in the state of Florida and the largest fully accredited K-12 and adult school district in the nation. BCPS has over 247,500 students and approximately 125,000 adult students in 239 schools and education centers and 95 charter schools. For more information about BCPS, follow BCPS on X (@Browardschoolsjobs) or find us on Facebook at (www.facebook.com/browardschools).
Transform lives—including yours—with the nation’s leading provider of early childhood education and child care. We don’t just hold ourselves to the highest standards; we set new ones. Our accredited programs, talented teachers, and research-based curriculum empower children to explore their limitless potential while giving families the confidence they need to shine at home and work. Explore opportunities across our family of brands—KinderCare® Learning Centers, Champions®, and Crème de la Crème®! We also offer child care solutions that organizations can add to employee benefit packages. And we partner with schools and entire districts to bring extended-day programs to their learning communities, including before- and after-school programs and seasonal break camps. With over 37,000 teachers and staff across more than 2,400 locations in 40 states and Washington, D.C., there’s no limit to what you can achieve here and what we can achieve together. Think competitive, family-friendly benefits, professional development, generous paid time off, and a work-life balance that helps you thrive.
Kaplan is a global educational services company that provides individuals, universities, and businesses with a diverse array of services, including higher and professional education, test preparation, language training, corporate and leadership training, and student recruitment, online enablement and other university support services. Our company was founded in 1938 in Stanley Kaplan’s Brooklyn, NY home with a mission to help children of immigrants advance their dream of going to college. From those humble beginnings, Kaplan has grown into an enterprise operating in 28 countries and serving nearly a million students and thousands of corporate and university clients. Throughout our history, Kaplan has remained committed to our founding mission of expanding educational access and transforming learning through new technologies. We are always moving forward—innovating, adapting, and bringing education into the future. The vast breadth and scale of our capabilities and diverse offerings set us apart, allowing our students and partners to advance further, faster. Kaplan is a subsidiary of the Graham Holdings Company.
Second largest school district in the nation, LAUSD enrolls nearly 575,000 students in kindergarten through 12th grade, at over 900 schools, and 187 public charter schools. The boundaries spread over 710 square miles and include the mega-city of Los Angeles as well as all or parts of 31 smaller municipalities plus several unincorporated sections of Southern California. The mission of LAUSD is reflected in continued double-digit growth on the state Academic Performance Index (API); the upward trend in the graduation rate, progress in the pass rate on the California High School Exit Exam (CAHSEE) and other academic indicators. LA schools boast more winners of the United States Academic Decathlon championships-12-than any other District in this country. Add to those impressive victories, outstanding individual student and team achievements in: science, mathematics, social studies, language arts, foreign and dual languages, business and entrepreneurial skills, the visual and performing arts, and athletics. Nationally recognized by the Physicians Committee for Responsible Medicine for serving healthy, low fat and vegetarian school lunches. LAUSD's standards also call for: whole grains, low sodium, locally grown fruits and vegetables and no trans fat; flavored milk or carbonated beverages. Today, the District counts more than 115 new schools and campuses, thanks to the nation's largest public works project, funded by bond measures, a testament to broad voter support.
TAFE NSW is one of Australia's leading vocational education and training provider with over 100 years of experience. It caters for students at the local level, the national level and the international level. TAFE NSW has over 130 locations across the state. Through a series of forums, TAFE NSW works hard to ensure that it is meeting the expectations of the community and the industry in each local area. RTO: 90003
A strong education system is the cornerstone of every successful society. The Department of Education provides high quality education for children and young people throughout Western Australia, helping them reach their full potential. Visit our website to discover more about our schools, our students, our people and our commitment to education. We're committed to fostering a safe, respectful and inclusive online community. Our rules of engagement can be found here - https://www.education.wa.edu.au/social-media-rules-of-engagement
Latest updates, reports, and threat intel affecting the global network.
Dozens of Washington school districts have turned to technology to monitor student laptops 24/7 for signs of danger.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.