Cyber Incident Victim: Stonington Public Schools

Stonington Public Schools experienced a ransomware attack disclosed by district officials on or around September 25, 2021. The superintendent notified the school community that an investigation was ongoing but confirmed student data stored in the PowerSchool system remained unaffected. Initial public statements did not specify the attack’s operational impact, compromised systems, or whether data exfiltration occurred. No district website notice was published at the time of the initial disclosure.

On November 3, 2021, the district submitted a breach notification to the Maine Attorney General’s Office revealing attackers had accessed two file servers containing historical employee records. The incident affected 1,765 individuals, exposing personal information including names, dates of birth, mailing addresses, telephone numbers, Social Security numbers, health insurance identification numbers, and wage or tax-related data. Some records included information about employees’ dependents. District officials confirmed the payroll system was not compromised during the attack. Impacted individuals received offers for two years of identity protection and credit monitoring services. The district did not disclose whether a ransom was paid, the specific ransomware variant involved, or the initial attack vector leading to server compromise.