Providence Public School District in Rhode Island recently faced a major cybersecurity incident when its network was compromised by ransomware. The Medusa hacker group claimed responsibility for the breach, which affected the school district’s data systems. This event, detected in September 2024, led to the shutdown of internet services across the district, significantly disrupting school operations. While the attack was not officially linked to ransomware until later, the hackers posted on a ransom blog, claiming to have stolen sensitive personal information, including student data, and demanded a $1 million ransom for its release.
The school board initially refrained from disclosing the nature of the breach, describing it as “irregular activity” on their network. However, President Erlin Rogel confirmed that the breach had been discussed in an executive session, though he did not disclose further details. The breach involved significant amounts of personal data, such as Social Security numbers, student records, and health information. With the hackers using “double extortion” tactics, the threat of releasing the stolen data or selling it looms unless the ransom is paid. Meanwhile, the school district has been working to restore operations and prevent further damage.
Amid the investigation, Providence school officials have confirmed that no misuse of the stolen data has been identified so far. However, they encouraged individuals to monitor their accounts and financial statements closely for any suspicious activity. Despite the serious nature of the attack, the district continues to explore cybersecurity improvements, such as implementing updated security tools, firewalls, and endpoint detection systems to prevent future breaches. The district’s response highlights the growing risks that K-12 schools face in the face of increasing cyberattacks targeting educational institutions.
The attack on Providence schools comes at a challenging time for the district, which has been under state control since 2019 and is still in the process of recovering from earlier financial and operational issues. The breach also puts the district at risk of violating the Family Educational Rights and Privacy Act (FERPA) if private student information is leaked. In response, the school district has engaged the FBI, Rhode Island State Police, and the Department of Homeland Security for assistance. As the district works to restore normalcy, students and staff have been forced to adjust to older technologies, while union leaders voice concerns over the disruption to teaching and learning.
Reference:
