A ransomware attack on the education network of West Lothian Council has led to the theft of “personal or sensitive” data by cyber criminals, according to the local authority. The stolen data, which includes some personal information, pertains mostly to operational issues like lesson planning. However, officials have raised concerns that confidential pupil records, financial data, and social work records may have also been compromised.
The attack, which was carried out by a group called Interlock, involved encrypting the council’s files and demanding a ransom with a threat to release the material online if payment is not made. The council’s IT systems used by 13 secondary schools, 69 primary schools, and 61 nurseries were affected, prompting the isolation of the education network from the rest of the council’s computer systems. Police Scotland and external agencies are currently investigating the incident.
West Lothian Council has confirmed that less than 10% of all data from the server has been stolen, with some of the information being personal or sensitive. To prevent further criminal activity, the council has advised people to be vigilant and change their passwords to ensure they are strong and unique. Updates on the cyber attack will be provided on the council’s website as the investigation progresses.
The theft of data from the education network has caused concern about potential phishing attacks and scams that could arise from the stolen information. Parents and staff are being urged not to contact schools or the council’s customer support line for additional details at this time. The incident is part of a larger trend of cyber attacks on businesses, with major retailers like Marks & Spencer, the Co-op, and Harrods also falling victim in recent weeks
Read the full article from The BBC here: Read More
