One new attack on a k-12 district and an update on a previous one.
WHIO reports that Richmond Community Schools in Indiana posted to social media that student and staff information in the PowerSchool software system was breached in a ransomware attack on Friday.
“While there is no current evidence of misuse, RCS has shut down the data services network and is actively investigating the breach with the assistance of local, state, and federal agencies,” the social media post said.
The district said they are working to restore all of their systems, but it may take several days.
Read more at WHIO. RCS’s Facebook notice read:
Richmond Community Schools data services network was the target of a ransomware attack on Friday, September 27, 2024. Unfortunately, student and staff information housed in PowerSchool was breached. While there is no current evidence of misuse, RCS has shut down the data services network and is actively investigating the breach with the assistance of local, state, and federal agencies. Although we are working to restore all systems as soon as possible, please be aware that it may take several days to regain full functionality in all systems.
Please note that RCS will be operating on a two-hour delay schedule this Monday, September 30, 2024, as we work to resolve this issue. Buses will run two hours later than usual. There will be no morning half-day preschool classes. Our dedicated teachers and staff are currently preparing low-tech lesson plans for the first few days of school next week.
RCS is taking this situation very seriously and we appreciate your patience and understanding as we work through this issue. As soon as additional information becomes available, we will keep you informed.
In other school district ransomware news, The Times-Tribune obtained more details on a March ransomware attack affecting the Scranton School District in Pennsylvania. They report:
The Scranton School District paid nearly $80,000 to resolve a ransomware attack, including $25,000 in bitcoin as ransom to the attackers.
District officials sent $29,283 in April to Red Leaf Chicago, which operates DigitalMint, an online over-the-counter cryptocurrency platform specializing in ransomware incidents, according to records obtained by The Times-Tribune through a Right to Know Law request.
That includes a $25,000 ransom payment and associated fees, Patrick Laffey, assistant to the superintendent for finance and operations, said.
Read more at The Times-Tribune.