ALPHV threat actors (also known as BlackCat) have added a Long Island school district to their leak site: Plainedge Public Schools. The ransomware group has not started leaking any databases, but warns the district that they will if they do not hear from them. The district consists of the Charles E. Schwarting Elementary School,…
Category: Education Sector
GA: Funds stolen from Floyd County Schools in cyberattack, police investigating
John Bailey and John Druckenmiller reported this on June 8: The Floyd County school system confirmed on Wednesday reports of a cyberattack, discovered Monday, that resulted in $194,672.76 being stolen from the school system. “Floyd County Schools has been made aware of a spear phishing incident, which is a targeted email attack pretending to be…
District 207 Approves Cybersecurity Contract In Wake Of Attempted Breach
Igor Studenkov reports: Maine Township High School Dist. 207 Board of Education voted unanimously on Monday (June 6) to award a one-year cybersecurity contract to the company that helped the district prevent a security breach a few weeks earlier. The district considered bids from seven vendors. When one of the bidders, Texas-based Crowdstrike, was demonstrating…
This is (One of Many Reasons) Why Districts Get Hit with Ransomware
Bill Fitzgerald writes: Even the smallest of school districts are complicated places. Communicating with stakeholders is hard to do well, and getting the details right is imperative. The details become even more important when school boards and superintendents try and communicate about school safety issues. When communication is done well, is not rushed, and goes…
Leaking Student Data From US Campus App Found — But is It Real?
Another day, another leak. Another leak, another entity claiming it’s not real data. Another leak, another frustrating experience trying to responsibly disclose. According to Safety Detectives, they found exposed data related to an app called Transact Campus: Transact Campus’ technology integrates several payment functions into a single mobile platform to power student purchases at higher…
Pysa shuttered its leak site before it ever dumped data from more than half a dozen schools. Here’s what we know so far.
The education sector has always been a relatively easy target for cybercriminals. One group in particular — Pysa — earned a reputation for its ransomware attacks on schools. Despite analyses and alerts in March, 2021 by threat intel firms and the U.S. government indicating that Pysa was a major threat to the education sector in…