Sunday, December 15, 2019
US flag

Cyber ransom was paid by N.Y. district

A ransomware attack earlier this summer hit the Rockville Centre School District in New York, Superintendent William Johnson told Fox 5:

Ransomware is a program like a virus that infects the computers, phone systems, and other on-network hardware at a corporation or, more commonly in recent years, a school district.

Experts advise keeping data off-site so it’s not entirely necessary to pay to gain access to it again. That does help, but it’s not entirely safe. Restoring data from back-ups takes time, and it’s almost always cheaper for school systems to pay the ransom than to pay the ransom than to restore access to the system from their off-site back-ups.

“That’s why they made the request reasonable,” Mr Johnson was quoted as saying, referring to the criminals’ original demand for $176,000 in bitcoin but lowered through the district’s insurance agency and a third-party negotiator to half that amount. “They made the cost of getting the decryption tools cheaper than it would cost us to restore our systems from back-up.

“We thought we were safe,” he said. “This group used algorithms that were more sophisticated than anything we’ve ever seen. These guys are good.”

He noted that the data were never breached. In other words, criminals never gained access to any personally identifiable information or other sensitive data about the student or staff in Rockville. Rather, the ransomware software, when it infects a system, encrypts the computer and makes accessing anything on it impossible.

When the ransomware is paid, the decryption key is provided, and access is restored. The FBI generally warns against paying ransoms in situations like this, but Rockville Centre chose to pay it as a business decision, Mr Johnson said.

Districts victimized by ransomware in recent months:

Finally, last spring, computer systems in Baltimore County, Maryland, were attacked and ransom demanded of about $6 million. The county government estimated the net cost of the ransomware attack at more than $18 million, given the shutdowns that ensued as the information technology staff restored systems following the loss.

Paul Katula is the executive editor of the Voxitatis Research Foundation, which publishes this blog. For more information, see the About page.

Recent posts

Girls’ volleyball champs in Illinois

We congratulate the Illinois state champions in girls' volleyball: Newark, St Teresa, Sterling, & Benet Academy.

A weekend of ‘band geeks’ across America

The musical Band Geeks was in performance at a MD high school, just as marching bands from across America named a national champion.

2 dead, 3 wounded in Calif. school shooting

Another school shooting has resulted in the death of 2 California high school students. The suspect shot himself and is in custody.

Mercury makes a transit; next in 2032

A transit of Mercury occurred today and was visible from the US, provided you had sunny skies. It was one of longest possible transits.

On the Naperville BWW racist incident

A racist incident at a Naperville, IL, sports bar indicates that the threads of racism are strong, perhaps as strong as ever.

IL bill could excuse absences to vote

A proposed law in IL could give students up to two hours during the school day so they could vote in the upcoming election.

Loan forgiveness gains some bipartisan support

One Republican from GA, who used to work under Betsy DeVos at the US Education Dept, offers a plan to forgive some student loan debt.

A band teacher is IL Teacher of the Year

IL named a band teacher the 2020 Teacher of the Year on Oct. 19. He individualizes music instruction and shares his work with 1000s.

‘Little Shop of Horrors’ bookends Halloween

Several high schools have decided to add a little spook to their musical stages in this season of Halloween. Music makes it happen.

New IL law ensures inclusion of LGBTQ+

A law will take effect next school year in IL that will require students to study LGBTQ history as part of the social studies curriculum.

MoCo doubles down on summer learning loss

Research is at least equivocal about summer learning loss, but maybe there's something to a new plan in Montgomery County, Md.


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.