Hackers tried to sell Pembina Trails School Division student, staff info on dark web
A recent ransomware attack on the Pembina Trails School Division in south Winnipeg has resulted in nearly 1 million files being uploaded onto the dark web by a hacker group known as Rhysida. Personal information of students, teachers, and families, including valid passports, staff payroll information, and credit card statements, were among the data stolen in the breach.
The division confirmed that the hacker group demanded a ransom for the return of the data, but the ransom was not paid. As a result, the group advertised the sale of the stolen information on the dark web. When no buyers were found, the group uploaded the data online for anyone to access.
The compromised data includes names, dates of birth, confidential business data, personal health information, and email addresses. Colleen Peluso, a parent with children in the Pembina Trails School Division, expressed concern over the breach, stating that her family’s personal data was among the information stolen.
VenariX, a Texas-based cybersecurity company, discovered the Pembina Trails data on the dark web and published a report with pixelated images of the stolen information to raise awareness about the hack. The hacker group listed the stolen data for sale for 15 bitcoins, equivalent to approximately $1.6 million.
The Winnipeg Police Service’s financial crimes unit is currently investigating the breach. The Manitoba Teachers’ Society president, Nathan Martindale, expressed concern over the compromise of teacher and student data, emphasizing the potential psychological stress it may cause.
In response to the breach, the Pembina Trails School Division has hired a cybersecurity company to investigate and is offering three years of free credit monitoring services to current and former staff. The division is urging families to remain vigilant in light of the breach.
Cybersecurity experts warn that ransomware attacks on schools and school divisions are becoming more common. Organizations like school divisions are advised to invest in employee training to recognize potential security threats, such as phishing emails, and to secure work systems from potential breaches.
The incident with the Pembina Trails School Division is just one of many attacks on school divisions across Canada. Rhysida, the hacker group responsible for the breach, has targeted various institutions globally, including government entities in Portugal, Chile, and Kuwait. It is crucial for organizations to prioritize cybersecurity measures to safeguard sensitive data and prevent future breaches.
