Sergiu Gatlan reports:
Los Angeles Unified School District (LAUSD), the second-largest school district in the United States, says the Vice Society ransomware gang has stolen files containing contractors’ personal information, including Social Security Numbers (SSNs).
LAUSD also revealed that the threat actors were active in its network for over two months, between July 31, 2022, and September 3, 2022.
Read more at BleepingComputer.
So why did it take so long for the district to determine that contractors’ information was involved? And again, what protection did the district have in place for the contractors’ data before the attack?