Seen on Twitter:

A new #ransomware group named #BianLian claims to have hacked #Mooresville Schools (@MrsvlPioneers), a public school district in Indiana, ??. The group claims to have stolen ~4,200 student records containing phone numbers, email addresses, and social security numbers… pic.twitter.com/QWECxn62L9

— BetterCyber (@_bettercyber_) July 11, 2022

BianLian seems to be using a strategy midway between just dumping and organizing to make data more searchable. They’ve organized the files by topic:

Although the threat actors dumped a lot of data, the downloads failed to open when this site tested a few. DataBreaches has yet to retest them.

Since the initial tweet the district has issued a statement that it is looking into the claims by the attackers.  The Reporter Times reports:

In a statement, Mooresville Schools said it “experienced a computer network disruption that impacted some of [its] operations.” The school system took steps to secure its network and investigate, according to the statement.

Susan Haynes, the school system’s director of communications, said the incident occurred in late June and school staff was notified July 1. Families were notified with the statement released on July 12.

Read more at The Reporter Times.