14 UK schools have been hit by a major cyber attack that resulted in the leaking of confidential documents including children’s passport scans and staff contracts.
The data was originally stolen in 2022 with the hacking group Vice Society considered to includeBut now the schools have been leaked online after they failed to pay the ransom demand.
The documents included children’s SEN information, staff contract details including headmaster’s salaries, bursary fund receipts, and data such as passport scans of children who had been used for school visits.
Achi Lewis, Area VP EMEA, Absolute Software, commented: “The education sector is an attractive target for malicious cybercriminals due to the large amounts of sensitive data stored on school and university systems. As a result, ransomware attacks are one case when not So, that calls for educational institutions to ensure that they are prepared to prevent and respond to these attacks, or else they run the risk of documents being stolen and leaked.
“Preventing a breach of IT systems requires strong network resilience, build on a platform of strong user verification to prevent malicious actors from breaching the network. Resilient Zero Trust, for example, allows case-by-case Works to verify users on an on-premises basis, scanning for unusual activity in the network and application access and alerting centralized IT teams to suspicious behavior. These teams freeze, or shut down, potentially compromised devices in order to prevent threat actors from advancing on the network to cause further damage.
“Recovering from a ransomware attack is a complex task, so it is also important for organizations to be prepared to respond to these attacks when they occur. Investigation, remediation and recovery after the initial attack can take years, which in themselves Threats can last for many months in the U.S., so schools and universities must ensure they have response protocols in place. Technology with self-healing capabilities can restore both device and network resilience to prepare against repeated threats. Repair and re-protect breached equipment to help
The schools that were attacked included: Carmel College, St Helens; Durham Johnson Comprehensive School; Francis King School of English, London/Dublin; Gateway College, Hamilton, Leicester; Holy Family RC+CE College, Heywood; Lampton School, Hounslow, London; Mossborne Federation, London; Pilton Community College, Barnstaple; Samuel Ryder Academy, St Albans; School of Oriental and African Studies, London; St Paul’s Catholic College, Sunbury-on-Thames; Test Valley School, Stockbridge; The De Montford School, Evesham.
#Hackers #leak #confidential #documents #schools #cyber #attack