Published Aug 30, 2024 • 2 minute read
Data accessed during June’s ransomware attack on Canada’s largest school board included personal information of students.
Advertisement 2
THIS CONTENT IS RESERVED FOR SUBSCRIBERS ONLY
Subscribe now to read the latest news in your city and across Canada.
- Unlimited online access to articles from across Canada with one account.
- Get exclusive access to the Toronto Sun ePaper, an electronic replica of the print edition that you can share, download and comment on.
- Enjoy insights and behind-the-scenes analysis from our award-winning journalists.
- Support local journalists and the next generation of journalists.
- Daily puzzles including the New York Times Crossword.
SUBSCRIBE TO UNLOCK MORE ARTICLES
Subscribe now to read the latest news in your city and across Canada.
- Unlimited online access to articles from across Canada with one account.
- Get exclusive access to the Toronto Sun ePaper, an electronic replica of the print edition that you can share, download and comment on.
- Enjoy insights and behind-the-scenes analysis from our award-winning journalists.
- Support local journalists and the next generation of journalists.
- Daily puzzles including the New York Times Crossword.
REGISTER / SIGN IN TO UNLOCK MORE ARTICLES
Create an account or sign in to continue with your reading experience.
- Access articles from across Canada with one account.
- Share your thoughts and join the conversation in the comments.
- Enjoy additional articles per month.
- Get email updates from your favourite authors.
Article content
In an email to parents sent on Thursday, the cyberattack announced by the Toronto District School Board (TDSB) on June 12, involved unauthorized access to a board-owned technology testing server — used by board IT technicians as a testing environment for new software.
“We have now confirmed that the testing environment contained 2023/2024 student information that could include name, school name, grade, TDSB email address, TDSB student number and day/month of birth,” read the email.
“We want to emphasize that, at this time, our cyber security teams and external security partners have advised that the risk to our students in connection with this cyber incident is low and that they have not seen any public disclosure of student data as part of their investigations, which includes monitoring of the dark web and other online locations.”
Advertisement 3
Article content
The school board says they’ve proactively informed the Privacy Commissioner of Ontario of the potential breach.
Ransomware is a cyberattack that involves malicious parties holding information or computer servers hostage unless a ransom is paid.
Toronto Public Library, Sick Kids Hospital, the Toronto Zoo, and the TTC all experienced prominent ransomware attacks over the past few years.
Recommended from Editorial
-
Ransomware group apologizes saying 'partner' was behind SickKids attack
-
TTC target of ransomware threat
Anne Borden, the mother of TDSB students, told the Toronto Sun she was taken aback by the news, and felt the tone of the board’s email downplayed the seriousness of the breach.
“That made me feel really not good about TDSB in terms of trust,” she said.
“If this is no big deal to them, what confidence do I have that they will really make things secure again?”
She said the TDSB needs to realign its priorities so that the information security of its students is paramount.
“They will spend hundreds of thousands on no-bid staff development workshops, many of which objectively don’t improve the school environment, but they can’t get a team together to stop data breaches of personal data of children?” she said.
“Our kids need better from them.”
[email protected]
X: @bryanpassifiume
Article content