Cyber Incident Victim: Emma Willard School

Emma Willard School experienced a ransomware attack that occurred on or around July 16, 2021. The school’s head, Jennifer Rao, disclosed the incident in a letter to the community dated the week following the attack. The cybercriminals successfully encrypted school systems and exfiltrated sensitive data before deploying ransomware. Stolen information included personal financial details belonging to some community members and Social Security numbers for employees. The attack disrupted normal operations, though the specific duration of system downtime was not publicly detailed. No ransomware group claimed responsibility or published stolen data in available reports. The school initiated incident response procedures but did not disclose whether law enforcement was involved or if ransom negotiations occurred.

Rao’s notification letter constituted the primary public response, confirming data theft and system compromise. The school did not specify whether third-party cybersecurity firms assisted in remediation or whether backups were used for recovery. Impacted individuals faced potential identity theft risks due to the exposure of Social Security numbers and financial data. No information was released regarding the number of affected individuals or specific departmental systems targeted. The incident marked a significant breach of sensitive employee and community information, though the school provided no updates on long-term operational or financial consequences beyond the initial disclosure.