Data released after LAUSD fails to pay 'insulting' ransom

Hackers prematurely released confidential data from Los Angeles Unified School District on Saturday, Oct. 1, based on the original deadline arranged by the criminal organization Vice Society.

The release was ultimately a response to what was Superintendent Alberto Carvalho’s final answer to the group’s demand for ransom—a resounding no. “What I can tell you is that the demand—any demand—would be absurd,” he told the Los Angeles Times. “But this level of demand was, quite frankly, insulting. And we’re not going to enter into negotiations with that type of entity.”

Carvalho has not yet revealed the cost of the ransom. According to a released a day prior to the leak, the district argued it would be a waste of money. “Paying ransom never guarantees the full recovery of data, and Los Angeles Unified believes public dollars are better spent on our students rather than capitulating to a nefarious and illicit crime syndicate,” the statement reads.

Screenshots of the data appear to reveal Social Security numbers and W-9 forms, yet extensive details have not yet been released.

“Unfortunately, as expected, data was recently released by a criminal organization,” Carvalho tweeted on Sunday. “In partnership with law enforcement, our experts are analyzing the full extent of this data release.”

LAUSD has also set up a hotline to assist those from the community who need support.

The incident first made headlines one month ago on Sept. 3, sparking fear in smaller school districts as they learned that the second largest school district in the country had fallen victim to a growing cybercriminal organization.

“Smaller school districts are absolutely at a disadvantage,” James Turgal, vice president of and former chief information officer for the FBI, told District 91��Ƭistration. “The smaller and mid-tier school districts, especially the K-12s, really need to band together.”

LAUSD was forced to shut down computer operations, resulting in a week of disruptions and more than 600,000 individual password resets.

Soon after the attack, the Cybersecurity & Infrastructure Security Agency (CISA) released a letter warning districts that further cyberattacks are highly anticipated.

At least 27 school districts and 28 colleges have been hacked this year, according to Brett Callow, threat analyst for Emsisoft on . Vice Society continues to contribute to this growing number.

Vice Society has listed the 2nd largest school district in the US: . The same gang has hit at least 8 other US school districts and colleges/universities so far this year. 1/5

— Brett Callow (@BrettCallow)

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

91��Ƭ

Hackers release confidential data after LAUSD refuses to pay ‘insulting’ ransom

The Always-On Insight and Networking Platform for Superintendents and Their Teams

Related Articles

Why schools should worry about the AI-adoption gap

LAUSD adopts first major screen time restrictions