Lebanon School District grapples with the aftermath of a ransomware attack that occurred earlier this month, as confirmed by outgoing Superintendent Joanne Roberts. In response to the June 15 attack, the district enlisted external cybersecurity experts to secure systems and investigate the incident’s nature and extent. To exercise caution, critical systems like payroll and PowerSchool were temporarily shut down. Despite the district’s robust data security program, Roberts acknowledges the growing sophistication of cyberattacks targeting organizations across various industries, including education.
The ongoing investigation has not revealed evidence of unauthorized acquisition or misuse of personal information, providing some reassurance. The district, comprising approximately 1,600 students and 360 employees, promptly informed staff, parents, the district’s insurance carrier, the U.S. Department of Education, and local and federal law enforcement agencies about the attack. Lebanon Police Lt. Richard Norris, supervising the cyber crimes unit, reveals that while an initial demand letter did not request money, there hasn’t been a second demand. The department actively monitors the dark web for signs of malicious use of data gathered from the attack and emphasizes collaboration with the school district.
Norris underscores the commonality of ransomware attacks or attempts to access computer systems, emphasizing the importance of both user and system administrator actions in mitigating risks. Users are advised to avoid opening attachments and links from unknown sources, while administrators should restrict user access to necessary parts of the computer network. Implementing email scanning programs for virus and malware detection is also recommended. Education becomes a key factor in dealing with such cyber threats, as awareness and preventive measures contribute to overall system security and the limitation of potential damages.
