It almost seems surreal to discuss a routine school audit in the midst of all the news right now, but here we go… The NYS Comptroller’s Office released its report on Susquehanna Valley Central School District to determine whether district officials established information technology (IT) controls over user access to protect against unauthorized use, access…
Category: Education Sector
Ransomware crims read our bank balance and demanded the lot, reveals Scotland’s Dundee and Angus College
Ransomware operators often do their research on their victim to know what assets to go after. Here’s an example where threat actors did their research, but were perhaps too greedy in their demands. Gareth Corfield reports: The criminals who took out Scotland’s Dundee and Angus College made a ransom demand that precisely added up to…
Update: Newcastle students’ data including home addresses leaked on dark web after cyber attack
Theresa Merkel reports: A range of documents including Newcastle University students’ data has been leaked onto the dark web following the cyberattack that disrupted the university’s IT systems in September. The files were leaked by cybercrime group Doppelpaymer on October 12th and include a full list of students, their specific departments, courses and student numbers. Read more…
Another k-12 district reports a data breach
This time, it’s Columbus City Schools in Ohio, who report that on May 1, they learned that an employee’s email account had been compromised. Their subsequent investigation resulted in them notifying an undisclosed number of people that their name and social security number had been in the employee’s email account. You can read the October…
Cyberattack shuts down Saskatchewan Polytechnic
David Giles reports: Online and in-person classes have been cancelled at Saskatchewan Polytechnic following a cybersecurity attack. School officials said classes are cancelled until Nov. 5 while IT staff work with outside experts to restore systems, with the first priority restoring online learning. Read more on Global News. Sounds like a ransomware attack, but they haven’t actually said….
Threat actors dump personal employee and student data from Walled Lake Consolidated District
One of the k-12 district ransomware attacks that DataBreaches.net has been following involves Walled Lake Consolidated District in Michigan. The district suffered a ransomware attack on or about October 10 that they are still working to recover from. But while they focus on recovery of systems, the threat actors have tried to pressure on them…