NBC reports:
Stonington Public Schools was the victim of a ransomware attack, according to the school district.
A message the superintendent sent to the school community said the investigation is ongoing and that student data on PowerSchool was not breached or affected.
Read more on NBC. There doesn’t seem to be any notice on the district’s web site at the time of this publication.
UPDATE Nov. 3, 2021. The district notified the Maine Attorney General’s Office that 1,765 were impacted after the threat actors were able to access two file servers. According to the notification letter,
The affected files included certain historical employee data (including information regarding named dependents), which may have included the following information about you: name, date of birth, mailing address, telephone number, Social Security number, health insurance identification number, and wage and income tax
information. Our investigation determined that our payroll system was not affected by the incident.
Those impacted have been offered two years’ of mitigation services. The full letter is embedded below.
Stonington - Individual Notice Template