The Middletown Press reports:
An end-of-year ransomware attack, which disabled access to critical business systems and applications for Middletown Public Schools, underscored the need to upgrade both perimeter and endpoint security recently.
The district operates an enterprise network connecting 14 buildings with a high-speed (1 Gbps) fiber optic network. Over 6,000 users access educational, business office applications and the internet from a variety of endpoint devices, including many wireless users, according to a press release.
Read more on The Middletown Press.
I saw this article and its not clear to me that this is a new incident. Rather, it seems a (vendor-influenced) description of how they responded to their last ransomware incident. Other incidents: https://www.courant.com/community/middletown/hc-news-middletown-school-ransomware-20180629-story.html and https://www.nbcconnecticut.com/news/local/Cyber-Threats-Become-Disruption-In-Connecticut-Schools-472775193.html. If this is a new incident, it means they are thrice-bitten by ransomware in the past couple of years…
Thanks so much, Doug. I had questions about this one, too. In some cases, yeah, it could be a new instance or spread of previously reported ransomware, and I just wasn’t sure what was going on with this one so I finally posted it. I hope it’s just old news repackaged and now a new incident.