School District’s Files Leaked in $40m Ransomware Attack

School District’s Files Leaked in $40m Ransomware Attack

A South Florida school district that refused to pay its cyber-attackers a $40m ransom has had thousands of its files leaked online. 

Broward County Public Schools was targeted by the Conti ransomware gang at the beginning of March in an attack that caused a shutdown of its computer system but left classes undisturbed. 

Conti demanded that the sixth-largest school district in the United States hand $40m of its annual $4bn budget over to them. 

In a transcript published by the gang, a negotiator for the district allegedly said that the ransom demand was impossibly large and countered with an offer to pay $500k. The ransomware gang turned the offer down but dropped their demand by three quarters to $10m. 

On March 31, the office of Broward's chief communications officer, Kathy Koch, released a statement declaring that although the district "is aware of the recent actions taken by the criminals who breached our system,” it had no intention of paying those criminals a ransom. 

On April 19, Conti published nearly 26,000 files that had been exfiltrated from the school district. Reporters at the South Florida Sun Sentinel who reviewed the data found "a few isolated incidents where confidential student or employee information was released."

The 25,971 files ..