MS: Vicksburg-Warren School District sends notifications for “Grief” ransomware incident in 2021
On May 12, 2022, Vicksburg-Warren School District in Mississippi issued a breach notification. Its explanation begins, “On or around May 28, 2021, VWSD detected unusual activity within its digital environment.”
Investigation revealed that files with personal information “may have been accessed or acquired.” The “may have been” seems a bit vague given that threat actors calling themselves “Grief” claimed to have 10 GB of data and had posted some images of data allegedly exfiltrated from the district’s system.
The notice does not indicate how many people are being notified and whether it is only employees, students/parents, or both, but media coverage in June 2021 had noted that this was a ransomware incident and that the listing was eventually removed from the leak site, which might indicate a payment had been made. One year later, however, the district’s notice makes no mention of any ransomware attack, no mention of any leak of data on the dark web, and no mention of any payment.
The district’s notification offers those affected IDX services that include twelve (12) months of credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, and fully managed identity theft recovery services.
The notice was submitted to the Montana Attorney General’s Office because one Montanan was affected.