Megan Hickey reports that there is finally a notification letter, of sorts, to parents about a network breach in November. In April, Indiana media had been reporting that the parents and community still had not been told what had happened.
After atemporarily closed schools in Crown Point, Indiana last fall, we are finally learning what happened.
As CBS 2 Investigator Megan Hickey reported Thursday, parents and students recently started getting letters confirming a five-day breach back in November in the Crown Point Community School Corporation’s network system. But it’s the letters themselves, and a lack of communication about the issue, that are now causing more concern.
Read more at CBS News. Based on this new reporting, parents and students still don’t really have answers. The district’s reported lack of transparency is all-too-typical and unacceptable. Here’s what CBS and local media outlets should ask the district publicly:
- Was the November incident a ransomware attack where data was locked?
- Was there any ransom demand associated with the November incident?
- How did the attacker gain access to the network?
- Who does the district believe is responsible for the attack?
- Has any data from the breach shown up anywhere on the dark web or market places? Has the district or any consultants been diligently looking on an ongoing basis?
- If the district isn’t answering these questions forthrightly and transparently, exactly WHO is telling the district not to be fully transparent?