According to sources, Stratford University (a Education organization in Virginia) was hit with a cyber attack. It was first reported on 2023-01-27.

If You're in Virginia, You're at Increased Risk

Cybersecurity for Education

Manage your organization’s attack surface with SecuLore’s 24/7 network monitoring services.

  • 24/7 Threat Monitoring

  • Automated & AI Threat Detection

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis

Source 1  |  2023-01-27

Stratford University discloses ransomware attack — but which ransomware attack?

“DataBreaches’ report on Stratford University was published on September 8. At some later date, the school announced it was closing at the end of that term. The closure was reportedly not related to cyberattacks but to accreditation issues and finances that had arisen in August. Stratford University has filed a breach notification with the Maine Attorney General’s Office. The report indicates that the breach occurred on August 26, 2022.“

“The appended notification letter, submitted to Maine appears to be reporting a single ransomware attack. There is no mention of attacks by multiple groups or data leaks by various bad actors. So which attack were they reporting? REvil’s attack had been disclosed by REvil back in April of 2022. Snatch Team added their attack to their own leak site on August 17, presumably before the attack Stratford reported as occurring August 26. On January 15, 2023, Snatch Team dumped more than 50 GB of files from the school on their leak site. And Avos Locker started leaking the school’s data on September 7. So was it the Avos attack the university reported last week? And if so, were the other attacks ever disclosed to students or employees or to regulators?“

“The personal information obtained in the August attack reportedly included first and last name, phone number, address, email address, date of birth, student identification number, passport number, and Social Security number. Stratford reported that a total of 78,692 individuals were affected. Presumably that is for the one incident they reported. Although the university is now closed, a breach notice is linked from their home page. DataBreaches sent an email inquiry to the university’s external counsel to inquire about the report to Maine and whether all three attacks were ever disclosed. No reply was immediately received. This post will be updated when a reply is received.“

Guarding Against Ransomware

  • August 16, 2023

    Ransomware is on the Rise Again: Defense Against New Players

  • November 9, 2022

    Ransomware’s Hidden Costs: What You Need To Know

  • August 11, 2021

    How to Prevent and Respond to Ransomware Attacks

  • January 25, 2017

    How to Defend Public Safety from Ransomware

Cybersecurity for Critical Infrastructure

SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.

  • 24/7 Vulnerability & Threat Monitoring

  • Automated & AI Threat Detection

  • Specialized Threat Intelligence

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis