Two Maine school districts faced cyberattacks during the winter holiday period, continuing a concerning pattern of hackers targeting educational institutions when IT staffing is reduced.
South Portland Public Schools detected a network breach on Sunday, prompting immediate protective measures. Andrew Wallace, the district's technology director, confirmed they had to shut down their network to safeguard student and staff information.
The attack was identified through a network detection system provided by local vendor Blue Spruce, acquired through Maine Department of Education funding. Initial investigation traced the attack's origin to Bulgaria. While the breach disrupted operations, officials believe no sensitive data was compromised.
Quick response from the IT team enabled systems to return online before classes resumed Monday. The district, serving 3,000 students and 600 employees, brought in cybersecurity experts and city IT officials to assist with recovery efforts.
This incident follows a similar attack on Rutherford County Schools in Tennessee, which has been managing network disruptions since November 25. The Tennessee breach resulted in unauthorized access to some employee and student information, according to Jimmy Sullivan, the district's director of schools.
These attacks reflect a broader trend of cybercriminals targeting educational institutions during holiday periods. Last year saw dozens of K-12 schools fall victim to ransomware attacks, leading to school closures. In response, the White House launched initiatives including a $200 million FCC pilot program and partnerships with tech companies to strengthen school cybersecurity.
FCC Chairwoman Jessica Rosenworcel noted that schools face approximately 400 cyber incidents annually, with recovery periods lasting up to nine months and potentially causing millions in damages alongside educational disruptions.