Written by 8:49 pm Security News • One Comment

Highline Public Schools Forced to Close By Cyber-Attack

Highline Public Schools Forced to Close By Cyber-Attack

A cyber-attack forced a group of schools in the US Pacific Northwest to close for at least two days.

Highline Public Schools has more than 17,500 students in grades K-12. The district has 34 schools and 2,000 staff in Washington State.

On Sunday, the school district reported that it had suffered a cyber-attack and that all schools would be closed on Monday. The closures include cancelling meetings and athletics. They also mean cancelling the first day of kindergarten for this year’s intake.

The district later announced that schools would stay shut today, Tuesday.

“We have detected unauthorized activity on our technology systems and have taken immediate action to isolate critical systems. We are working closely with third-party, state and federal partners to restore and test our systems safely,” the district said in a statement.

It later added: “We understand cancelling school is a significant disruption for our families and staff, but student safety remains our top priority.”

As a precaution, Highline staff have been told not to use district-issued computers and laptops, and Highline said its network had been disconnected from the internet. As a result, staff cannot access critical applications “required for the safe operation of schools.” Staff can continue to use Office 365 and district-provided cell phones for email.

A spokesperson for the school district, Tove Tupper, told the Seattle Times that investigators had not found any theft of staff or families’ data. However, the schools had lost access to key systems, including an application that manages school transport. “We can’t afford to be without access to that, especially at the start of the year,” Tupper told the newspaper.

Increasing Attacks Against Schools

Cyber-attacks against schools are increasingly common and appear to rise at the start of the school year, with ransomware accounting for many attacks. Earlier this year, a school in Essex, UK, was forced to close after a ransomware attack locked staff out of school IT systems.

“It’s about leverage,” Andrew Hollister, security expert and former CISO, told Infosecurity. “Hitting the schools at the beginning of term is a way to pressure them into a quick payout to avoid impacting the school year – just like a cyber-attack in any other industry at a peak time.”

Don Smith, Vice President of Secureworks Counter Threat Unit, explained that schools can take several steps to protect themselves from similar attacks.
 
“With the limited resources many schools are working with, there are still ways to protect against cyber-attacks. The first step is to patch any networks that face the internet so that vulnerabilities are addressed regularly,” Smith advised.

“Secondly, it’s crucial that schools add a layer of multi-factor authentication to make it harder for bad actors to break through. By implementing these two strategies, schools and other educational institutions will likely become less prone to attacks and have better cyber health overall.”

Source: https://www.infosecurity-magazine.com/news/highline-schools-cyberattack/

Latest News:

  • Sellafield Fined for Cybersecurity Failures at Nuclear Site
    Sellafield Ltd. has been fined £332,500 ($437,440) for cybersecurity failures at the Sellafield nuclear facility in Cumbria, North-West England. Westminster Magistrates Court issued the fine following a prosecution brought by the Office for Nuclear Regulation (ONR), the UK’s independent nuclear regulator. Sellafield Ltd has also been ordered to pay prosecution costs of £53,253.20 ($70,060). The offences …
  • Ransomware Attack Forces UMC to Divert Emergency Patients
    The University Medical Center (UMC) Health System in Lubbock, Texas, has confirmed a ransomware attack that disrupted its IT infrastructure last week, forcing the diversion of emergency and non-emergency patients.  UMC, the only level 1 trauma centre within 400 miles, faced significant operational challenges, with phone systems down and the patient portal inaccessible. Despite this, …
  • British Hacker Charged in the US For $3.75m Insider Trading Scheme
    A British hacker accused of orchestrating a $3.75m insider trading scheme has been charged in the US. Robert Westbrook, 39, allegedly gained unauthorized access to corporate executives’ email accounts to profit from confidential financial information. US authorities arrested Westbrook last week in London, and he is awaiting extradition to face multiple charges, including securities fraud …