Cyber Incident Victim: Birklehof

On the nightof March 25, 2025, a cyber-attack targeted the IT systems of Birklehof school. Attackers succeeded in gaining access to parts of the school's servers and encrypted those systems. The school could not completely rule out that data had also been exfiltrated during the incident. Despite the attack, school operations continued with only minor disruption. Immediately after discovering the breach, the entire IT network was taken offline. Additional security measures were implemented to protect the remaining systems. External IT-forensic experts were engaged to assist with defense, investigation, and restoration of security and integrity. The relevant authorities were notified and the school is cooperating closely with them. These actions were undertaken to contain the attack and begin recovery efforts. The forensic team began analyzing logs and system images to determine the attack vector and scope.

The school stated that an ongoing assessment is determining which data and whose data may have been affected. They noted that personal data such as private or business contact information could be involved. Additionally, data related to the attendance of children at the school might be compromised. The school could not exclude that the attackers might misuse the obtained data for contacting individuals or seeking financial gain. The school committed to informing those impacted through postal mail or a dedicated website as updates become available. The evaluation process is expected to continue until a clear picture of the breach's consequences emerges. The school expressed regret over the incident and thanked students, staff, and families for their flexibility and cooperation. They emphasized their commitment to restoring normal operations and securing the IT environment. No further details about the attackers or their identity were disclosed in the statement.