Long Island Schools Hacked; District Forced to Pay $88,000 in Ransom - NBC New York

Long Island Schools Hacked; District Forced to Pay $88,000 in Ransom

Cyber security experts say the ransom is often the least costly part of the process

    processing...

    NEWSLETTERS

    Two LI School Districts Hacked and Held for Hefty Price

    After two Long Island school districts were held for ransom, with one paying and the other refusing, schools and administrators are learning a very valuable lesson. NBC 4 New York’s Pei-Sze Cheng reports.

    (Published Monday, Aug. 26, 2019)

    What to Know

    • Two school districts on Long Island were hacked and held hostage over the summer

    • The Rockville Centre School District paid $88,000 in bitcoin in order retrieve student and staff information before the school year started

    • Experts say organizations need to back up data and educate employees to not open questionable emails and click on links and attachments

    Hackers held two school districts on Long Island hostage over the summer, forcing one of them to pay $88,000 in cryptocurrency in order retrieve student and staff information before the school year started.

    Despite using an anti-virus software and other firewalls for cyber security, the Rockville Centre School District's encrypted files were accessed on July 25 by Ryuk ransomware, which can infiltrate an entire server with one click of a malicious email attachment. 

    The district's IT director managed to shut down the computer network the next day and limited damage, according to district officials. They believe the move enabled their insurance carrier to negotiate a lower ransom payment. 

    "By finding ways to restore some of our data, the ransom demand went from approximately $176,000 to $88,000,” the district told SC Media.

    Cyber security experts like Anita D’amico of Code Dx, a company that provides a vulnerability management system, say the ransom is often the least costly part of the process.

    "The longer you dawdle, the higher the price," D'amico said. "They have been in your system and could have infected your system, so you have to cleanse the system."

    Rockville Centre School District's bitcoin ransom payment and its insurance's $10,000 deductible was less expensive than the cost to recover from the attack without the decryption keys, the district said.

    D'Amico also says that one of the best ways to protect yourself from ransomware attacks is to create back ups of important information and store them separately from the main server. 

    The Mineola school district was also attacked by the same virus. But they didn’t have to pay because they had a back up that wasn’t compromised.

    The Mineola School District was also attacked by the same virus. But they didn’t have to pay because they had a back up that wasn’t compromised.

    How Capital One Customers Are Being Impacted After Hack

    [NY] How Capital One Customers Are Being Impacted After Hack

    It is one of the biggest data breaches in U.S. history, as the credit card applications and accounts of 100 million people may have been hacked. NBC 4 New York's Roseanne Colletti reports.

    (Published Wednesday, July 31, 2019)

    Experts say it's also important to educate employees to not open questionable emails and click on links and attachments. Rockville Centre School District Superintendent Dr. William Johnson said they're "working on that right now" and assured parents they're ready for the upcoming school year.

    The district also said it is working with federal authorities to make their servers more secure.

    Get the latest from NBC 4 New York anywhere, anytime

    • Download the App

      Available for IOS and Android