Hackers email stolen student data to parents of Nevada school district

The Clark County School District in Nevada is dealing with a potentially massive data breach, as hackers email parents their children's' data that was allegedly stolen during a recent cyberattack. CCSD is the fifth largest school district in the US, with over 300,000 students and 15,000 teachers. On October 16, CCSD confirmed it suffered a cyberattack earlier this month, stating threat actors gained access to the district's email servers. "On approximately October 5, 2023, Clark County School District became aware of a cybersecurity incident impacting its email environment," reads a statement from the Clark County School District. "Upon discovering the incident, CCSD immediately engaged a team of forensic experts to investigate the incident and ensure that CCSD operates within a safe and remediated email environment. CCSD is also cooperating with law enforcement's investigation." In response to the attack, CCSD disabled access to its Google Workspace from external accounts and has forced reset all student's passwords. Things have taken a turn for the worse, with parents reporting they are receiving emails from the threat actors warning that their child's data was leaked. "I'm so sorry to tell you this but unfortunately your private information has been leaked. You should probably change your information in CCSD systems if that is possible," reads an email titled "CCSD Leak" seen by the Las Vegas Review Journal. According to a report from KSNV News 3 Las Vegas, these emails include PDF files that contain students' stolen data, including student photos, addresses, student ID numbers, and email addresses,. Both students and parents are upset and scared that the threat actor has their data and could potentially use it for other malicious purposes, such as identity theft or further phishing attacks. BleepingComputer contacted CCSD on Friday but did not receive a response as they were closed for the Nevada Day holiday. According to a detailed report by DataBreaches.net, the hackers behind the Clark County School District breach call themselves 'SingularityMD' and have already begun to leak what they claim is the data for 200,000 CCSD students. The threat actors contacted DataBreaches.net to share information about the attack, including a link to a "Statement" that contains URLs for allegedly stolen data. "We SingularityMD, would like to make a statement for clarification. CCSD did not detect a security issue, we emailed them to tell them we had been in their network for a few months," reads a note by the hackers on a code-sharing site. "We asked for less than one third of the Jesus F Jara's annual salary in exchange for destroying the stolen data. The callousness and incompetence of the leadership at CCSD is astounding, not only did they not cooperate, it is clear they did not communicate with principals and have still not plugged their leaky ship, meaning we still have access to the network." This note contains links to leaked data archives hosted on dark web and clearweb sites, containing what the hackers claim is the personal data of 200,000 students. DataBreaches.net examined some of the leaked data and said it looks legitimate, but CCSD has not responded to their emails to verify if the data belongs to them. Parents who received some of the leaked data have already verified that the information belongs to their children, adding legitimacy to the leaks. At this time, the threat actors claim to still have access to CCSD's systems and have more data that they will leak if the school district does not pay an extortion demand. Seiko says ransomware attack exposed sensitive customer data.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 30 Nov 2023 23:19:27 +0000


Cyber News related to Hackers email stolen student data to parents of Nevada school district

Hackers email stolen student data to parents of Nevada school district - The Clark County School District in Nevada is dealing with a potentially massive data breach, as hackers email parents their children's' data that was allegedly stolen during a recent cyberattack. CCSD is the fifth largest school district in the US, ...
11 months ago Bleepingcomputer.com
Student Cybersecurity Clubs: Fostering Online Safety - Student cybersecurity clubs are playing a crucial role in promoting online safety among students. Student cybersecurity clubs play a vital role in this regard, as they provide a platform for students to learn about the latest threats, share best ...
10 months ago Securityzap.com
Strategies for Securing Student Data in Cloud Services - This article addresses the strategies that educational organizations can employ to ensure the protection and confidentiality of student data in cloud services. Implementing strong access controls is crucial for ensuring the security of student data ...
10 months ago Securityzap.com
Protecting Student Privacy Online - In the rapidly evolving world of online education, the protection of student privacy has emerged as a critical concern. This article delves into the privacy risks associated with online education and highlights the significance of complying with ...
10 months ago Securityzap.com
New Nevada Ransomware Targets Windows and VMware ESXi Systems - A relatively new ransomware operation known as Nevada is quickly growing in capabilities, targeting Windows and VMware ESXi systems. On December 10, 2022, Nevada ransomware was promoted on the RAMP darknet forums, inviting Russian and ...
1 year ago Bleepingcomputer.com
Role of Parents in Teaching Online Safety - In today's digital landscape, where children are increasingly exposed to the vast world of the internet, the role of parents in teaching online safety has become paramount. Parents should have regular conversations with their kids about the ...
11 months ago Securityzap.com
Cybersecurity for Homeschooling Parents: A Guide - With the increased reliance on technology and online tools, homeschooling parents must also address the pressing issue of cybersecurity. Whether it's securing tech tools, teaching safe online practices, or accessing valuable resources, this guide ...
10 months ago Securityzap.com
Securing Student Data in Cloud Services - In today's educational landscape, securing student data in cloud services is of utmost importance. One key aspect of securing student data in cloud services is ensuring proper data encryption. This article explores the various challenges and best ...
10 months ago Securityzap.com
K-12 schools in Tucson, Nantucket respond to cyberattacks - Schools in Tucson, Arizona, and Nantucket, Massachusetts, are dealing with cyberattacks as U.S. schools continue to face a barrage of threats in the first weeks of 2023. A spokesperson from Tucson Unified School District told The Record that they ...
1 year ago Therecord.media
Data theft plaguing K-12 schools after holiday season attacks - Schools across the U.S. remain fertile targets for hackers, with a slate of K-12 entities contending with cyberattacks and data thefts following the holiday season. Since the start of the year, a handful of schools have reported data breaches ...
9 months ago Therecord.media
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
1 month ago Aws.amazon.com
Clint Independent School District Increases Cloud Visibility For Improved Threat Detection - Clint ISD, a District of Innovation, knows how important cloud security and safety are for their community Background. After speaking to Chief Technology Officer Michael Tapia, you'd be hard-pressed to find another school district more committed to ...
11 months ago Securityboulevard.com
Protecting Children Online: A Parent's Guide - It's easy to imagine a world in which our children are exposed to inappropriate content, cyberbullying, or even malicious online predators. In order to protect our children from these dangers, it is necessary to create an environment at home that ...
11 months ago Securityzap.com
The 6 Best Email Security Software & Tools of 2024 - To guarantee full protection against email threats, important features to consider when picking an email security solution include email filtering and spam detection, sandboxing, mobile support, advanced machine learning, and data loss prevention. ...
1 month ago Esecurityplanet.com
West Virginia students returning to class after days-long outage following cyberattack - Nearly 20,000 students in West Virginia were forced to miss classes on Monday due to a cyberattack that crippled their school. Berkeley County Schools said on Friday it was experiencing an internet and phone outage on Friday and spent the weekend ...
1 year ago Therecord.media
Multiple colleges, K-12 schools facing outages after cyberattacks - Several K-12 schools, colleges and universities are dealing with significant technology outages due to cyberattacks this week. A spokesperson for North Carolina Central University told Recorded Future News that the school was alerted to a cyberattack ...
11 months ago Therecord.media
Reject Nevada's Attack on Encrypted Messaging, EFF Tells Court - LAS VEGAS - The Electronic Frontier Foundation and a coalition of partners urged a court to protect default encrypted messaging and children's privacy and security in a brief filed today. The brief by the American Civil Liberties Union, the ACLU of ...
8 months ago Eff.org
Email Security Trends And Predictions in 2024 - One of the most critical aspects of this broad topic is email security. Email security refers to the collective measures used to secure the access and content of an email account or service. An email service provider implements email security to ...
11 months ago Cybersecuritynews.com
Online safety laws: What's in store for children's digital playgrounds? - As children's safety and privacy online becomes a matter of increasing urgency, lawmakers around the world push ahead on new regulations in the digital realm. Tomorrow is Safer Internet Day, an annual awareness campaign that started in Europe in 2004 ...
1 year ago Welivesecurity.com
FSB arrests Russian hackers working for Ukrainian cyber forces - The Russian Federal Security Service arrested two individuals believed to have helped Ukrainian forces carry out cyberattacks to disrupt Russian critical infrastructure targets. Both suspects were taken into custody one same day in two different ...
11 months ago Bleepingcomputer.com
Pennsylvania's Scranton School District dealing with ransomware attack - Schools in Scranton, Pennsylvania, are dealing with a ransomware attack, the district confirmed in a Friday message to students. On Facebook, the Scranton School District warned that it is dealing with widespread technology outages as a result of the ...
8 months ago Therecord.media
As SAT Goes Digital, Schools Must Prepare for Disruption - COMMENTARY. As technology continues to reshape every aspect of our lives, it is no surprise that even time-honored institutions like the Scholastic Aptitude Test are embracing the digital revolution. In 2024, the College Board, the organization ...
11 months ago Darkreading.com
Hopewell Area School District targeted by ransomware attack - ALIQUIPPA, Pa. - The Hopewell Area School District claims they were a victim of a ransomware attack. State and federal law enforcement are now investigating. The district is also working to determine whether any data on the network was accessed ...
11 months ago Cbsnews.com
Attempted extortion of UK school by ransomware group using confidential information about vulnerable children - On Thursday, the Vice Society ransomware group claimed to have stolen sensitive data from Guildford County School, the latest British educational institution to be victimized. Hundreds of files, believed to have been taken from the school on January ...
1 year ago Therecord.media
LAUSD Confirms SSNs Leaked in Ransomware Attack in September - The Los Angeles Unified School District (LAUSD) has confirmed that social security numbers of employees were leaked as part of a ransomware attack in September. The attack, which struck the district on September 20, locked down the district’s ...
1 year ago Therecord.media

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)