Wisconsin school district attacked by Snatch ransomware group

The Snatch ransomware gang has claimed to be behind the ransomware attack against the Kenosha Unified School District in Wisconsin, which caters to almost 20,000 students, according to The Record, a news site by cybersecurity firm Recorded Future. No specifics regarding the amount of data or types of files stolen were detailed by the ransomware group. Kenosha Unified School District was impacted by the attack on Sept. 25, with officials noting that the school district has since restored systems it took down as a precaution, as well as sought assistance from law enforcement and a cybersecurity firm in investigating the incident. Snatch ransomware's claims on the Kenosha Unified attack come as the Government Accountability Office reported that cyberattacks aimed at K-12 schools usually disrupted learning for three days to three weeks, and resulted in recovery times that ranged from two to nine months. The Cybersecurity and Infrastructure Security Agency and Secretary of Education have been urged by the GAO to strengthen cybersecurity coordination between agencies and schools. The GAO also recommended Education Department-led development of metrics for K-12 cybersecurity product and service effectiveness.