{"id":167934,"date":"2024-09-02T12:57:46","date_gmt":"2024-09-02T12:57:46","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=167934"},"modified":"2024-09-02T12:57:48","modified_gmt":"2024-09-02T12:57:48","slug":"lockbit-ransomware-toronto-district-school-board","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/167934\/cyber-crime\/lockbit-ransomware-toronto-district-school-board.html","title":{"rendered":"Lockbit gang claims the attack on the Toronto District School Board (TDSB)"},"content":{"rendered":"
<\/div>\n

The Toronto District School Board (TDSB) confirmed that student information was compromised in the June Lockbit ransomware attack.<\/h2>\n\n\n\n

The Toronto District School Board (TDSB) confirmed that students’ information was compromised following a ransomware attack\u00a0that was discovered in June.\u00a0<\/p>\n\n\n\n

The TDSB is the largest school board in Canada with 582 schools and about 235,000 students. In June, the organization informed<\/a> parents that unauthorized activity was detected in a test system used by their technology department. This test environment is separate from the board’s official networks. In response, the TDSB’s cybersecurity team quickly acted to secure data and protect critical systems.<\/p>\n\n\n\n

Exposed student information could include name, school name, grade, TDSB email address, TDSB student number and day\/month of birth.<\/gwmw><\/p>\n\n\n\n

“At that time, TDSB became aware that an unauthorized third party gained access to TDSB\u2019s technology testing environment, which is a separate environment used by TDSB IT Services to test programs before they are run live on TDSB systems.” reads the update<\/strong><\/a> published by TDSB. “We have now confirmed that the testing environment contained 2023\/2024 student information that could include name, school name, grade, TDSB email address, TDSB student number and day\/month of birth.”<\/em><\/gwmw><\/p>\n\n\n\n

The Toronto District School Board (TDSB) assured parents that the risk to students from the security breach is low. TDSB confirmed that is not aware of public disclosure of student data on clear and dark web<\/a>. The TDSB took immediate actions, such as isolating and securing affected systems, disconnecting the test environment, enhancing security measures, and notifying law enforcement. The organization reported the incident to the Office of the Information and Privacy Commissioner of Ontario.<\/p>\n\n\n\n

The researchers\u00ec Dominic Alvieri reported that the Lockbit<\/a> gang claimed responsibility for the ransomware attack on Toronto District School Board and threatened to leak the stolen data if the organization will not pay the ransom within 2 weeks. However, the notorious ransomware group claimed tens of other attacks against other organizations, but some of the announcements published by the group appear to be full of errors or related to past data breaches announced by other ransomware gangs.<\/p>\n\n\n\n

\n

LockBit is active again.

The Toronto District School Board was just claimed by LockBit.

LockBit also claims to have re-breached Bridgestone Americas and claims Albany Bank, PKF Australia, HP Hood\u2026
pic.twitter.com\/KBU9CtXbIs<\/a><\/p>— Dominic Alvieri (@AlvieriD) August 29, 2024<\/a><\/blockquote>