Cyber Incident Victim: Mossbourne Federation
Date:
Jul 2022
Location:
United Kingdom
Summary
A ransomware group known as Vice Society leaked sensitive student data on the dark web following attacks targeting multiple UK educational institutions that refused ransom demands. The breach impacted thousands of students across several schools and a sixth-form college, with compromised information publicly disclosed by the threat actors to pressure victims into payment.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
The incident involving multiple UK educational institutions, attributed to the ransomware group Vice Society, unfolded in early July 2022. Vice Society infiltrated the networks of at least five schools and one sixth-form college, including Pilton Community College, The De Montfort School, St Paul’s Catholic College, and Carmel College. The attackers exfiltrated sensitive student data before deploying ransomware to encrypt systems. Following unsuccessful ransom negotiations, Vice Society executed their threat to publish stolen information on their dedicated dark web leak site. The data breach exposed personal details of thousands of students across the affected institutions, though specific data categories were not detailed in available reports.
Educational operations were disrupted as institutions worked to contain the incident, though the duration and severity of operational impacts remained unspecified. No confirmed details emerged regarding technical remediation efforts, law enforcement involvement, or cybersecurity vendor engagements. The public disclosure occurred via Vice Society’s leak site and subsequent media coverage by outlets including the Daily Mail and DataBreaches.net. Financial consequences were not quantified, though the refusal to pay ransoms prevented direct extortion costs while risking reputational damage from the data exposure. No follow-up reports clarified long-term impacts on affected students or institutions.