The Pennsylvania State Education Association (PSEA) disclosed a significant cyberattack that compromised sensitive personal information of more than 517,000 members. The breach, occurring in July 2024, included unauthorized access to government IDs, Social Security numbers, financial and medical data. PSEA communicated that not all members' data was fully accessed and they took steps to delete stolen data, suggesting involvement in a ransomware scenario. However, paying a ransom does not ensure data safety, as historical cases have shown otherwise, leaving affected individuals at continued risk.
PSEA said it experienced a cyberattack in July 2024 that saw an unauthorized actor access its network to steal a trove of data belonging to more than 517,000 individuals.
We want to stress that not all data elements were acquired for every impacted individual, PSEA told affected members in the letter.
PSEA also said it took steps, to the best of our ability and knowledge, to ensure that the data taken by the unauthorized actor was deleted, implying that PSEA was the target of a ransomware or data extortion attack.
Paying a ransom demand is no guarantee that the malicious hackers deleted the stolen data.
Collection
[
|
...
]