A South Florida university district that refused to spend its cyber-attackers a $40m ransom has experienced countless numbers of its data files leaked online.
Broward County Public Schools was targeted by the Conti ransomware gang at the beginning of March in an attack that prompted a shutdown of its laptop or computer technique but left lessons undisturbed.
Conti demanded that the sixth-greatest faculty district in the United States hand $40m of its annual $4bn funds in excess of to them.
In a transcript posted by the gang, a negotiator for the district allegedly mentioned that the ransom desire was impossibly large and countered with an supply to shell out $500k. The ransomware gang turned the supply down but dropped their need by three quarters to $10m.
On March 31, the business office of Broward’s chief communications officer, Kathy Koch, produced a statement declaring that whilst the district “is knowledgeable of the current actions taken by the criminals who breached our technique,” it had no intention of shelling out individuals criminals a ransom.
On April 19, Conti published just about 26,000 files that had been exfiltrated from the school district. Reporters at the South Florida Sun Sentinel who reviewed the data found “a several isolated incidents the place confidential scholar or worker facts was introduced.”
The 25,971 information date from 2012 to March 2021 and mainly comprise economical data, which includes buy orders, invoices, and journey expenses claim forms.
Although no Social Security information and facts was identified amongst the leaked data, it did incorporate various worker phone lists.
Private facts belonging to one particular 9-year-old pupil was uncovered on an bill from the state well being section.
The Sentinel noted that most of the Broward details released by Conti is presently a matter of general public history. Amongst the info are payments to nearby law enforcement departments and the Broward Sheriff’s Place of work for security, utility charges, 750 mileage experiences, and about 700 invoices for spring drinking water.
In the hope of blocking a different cyber-attack on Broward, the school district’s main details officer, Phil Dunn, has asked for $20m for cybersecurity improvement. He warned the school board very last 7 days that one more strike could be devastating.
Some sections of this report are sourced from: