Buffalo Public Schools Victim of Ransomware Attack
The New York school district hired a cybersecurity company to investigate the ransomware attack along with the FBI.
BUFFALO, N.Y. — Buffalo Public Schools (BPS) is the latest victim in an increasing number of cyberattacks against school districts across the country.
The district announced late Friday that it had canceled all remote classes earlier in the day due to a ransomware attack that caused “unanticipated interruption to BPS District network systems,” reports Buffalo News. BPS serves approximately 34,000 students and operates nearly 70 facilities.
In a memo, BPS Chief Technology Officer Myra Burden said “at this time, no demands have been made; however, the FBI has found out that ransom may be between $100-300K and could be negotiable.”
Superintendent Kriner Cash approved an emergency contract with GreyCastle Security, a cybersecurity company, to support the FBI in its investigation. A press release from Cash’s office said investigators do not believe any Personally Identifiable Information (PII) was exposed.
Classes were also canceled Monday so the district can “pressure test system restoration and access as well as communicate any new or required information for students to access virtual learning tools once instruction resumes,” according to the release.
The press release also said IT will “continue to provide staff with training and information to safeguard against cybersecurity threats to personally identifiable information” and that “the district will implement a longer term comprehensive initiative to enhance IT security and infrastructure going forward.”
In December, federal agencies warned K-12 schools that ransomware attacks have been on the rise since districts have continued to rely on technology and online learning during the pandemic.
According to an advisory issued by the FBI, the Cybersecurity and Infrastructure Security Agency and the Multi-State Information Sharing and Analysis Center, 28% of all reported ransomware cases between Jan. 2020 and July 2020 involved K-12 schools. That statistic increased to 57% for August and September.
For instance, the day before Thanksgiving, Baltimore County Public Schools was hit by a ransomware attack that shut down schools for several days. Also in November, personal data was stolen from Toledo (Ohio) Public Schools, including Social Security numbers, employee evaluations, exam grades and dates of birth for students and employees.
Last March, Houston’s Sheldon Independent School District paid a ransom of over $200,000. However, the FBI and Cybersecurity and Infrastructure Security Agency do not recommend schools pay ransoms.
“Payment does not guarantee files will be recovered,” the agencies said. “It may also embolden adversaries to target additional organizations, encourage other criminal actors to engage in the distribution of ransomware, and/or fund illicit activities.”
If you appreciated this article and want to receive more valuable industry content like this, click here to sign up for our FREE digital newsletters!
About the Author
Amy Rock, Executive Editor
Amy is Campus Safety’s Executive Editor. Prior to joining the editorial team in 2017, she worked in both events and digital marketing.
Amy has many close relatives and friends who are teachers, motivating her to learn and share as much as she can about campus security. She has a minor in education and has worked with children in several capacities, further deepening her passion for keeping students safe.
Related Content
Leading in Turbulent Times: Effective Campus Public Safety Leadership for the 21st Century
This new webcast will discuss how campus public safety leaders can effectively incorporate Clery Act, Title IX, customer service, “helicopter” parents, emergency notification, town-gown relationships, brand management, Greek Life, student recruitment, faculty, and more into their roles and develop the necessary skills to successfully lead their departments. Register today to attend this free webcast!
