‘RansomHub’ behind CCSD cybersecurity incident that impacted thousands of student, staff data in July 2024

CHARLESTON COUNTY, S.C. (WCBD) – The Charleston County School District provided an update Tuesday regarding a cybersecurity incident that occurred in July 2024.

The district said it conducted a “thorough investigation” with external cybersecurity experts and found that a cybercriminal group known as RansomHub gained unauthorized access for roughly four days, July 16-19, impacting 20,653 students and staff dating back to 2005.

When the incident was discovered, CCSD said it acted immediately to contain the threat, secure its network, and initiate a detailed forensic review.

“While the district does not publicly disclose specific vulnerabilities or methods used in the breach, we can confirm that the exploited vulnerability has been fully remediated, and our systems have undergone significant security upgrades to prevent future incidents,” the district said in a news release.

The district said it did not pay a ransom or engage in negotiations with the cybercriminals at any point.

Personal information compromised in the breach varied by individual. The district said it completed an exhaustive review to identify and notify those individuals whose information was affected.

“Notifications were recently mailed directly to impacted individuals and included specific details on the types of information involved, along with tailored guidance,” CCSD said.

The district said it is offering complimentary identity protection services, including credit monitoring, identity theft recovery assistance, and a $1,000,000 insurance reimbursement policy to support those affected.

District officials said individuals who were confirmed to have been impacted and received a letter are encouraged to take advantage of the protection services and to contact the dedicated call center at 1-877-522-6813 with any questions.

Representatives will be available to provide assistance on that line between 9 a.m. and 9 p.m. Monday through Friday.