K-12

Hacked Georgia school district thwarts attempt to steal payroll funds

Thanks to two-factor authentication, school officials were notified of an unauthorized transfer attempt and no money was lost, a spokesman said.

By Betsy Foresman

March 6, 2019

Getty Images

Two-factor authentication frustrated an attempt to steal nearly $2 million in payroll funds from the Thomas County School System in southern Georgia, according to district officials.

Hackers gained unauthorized access to a district computer storing private banking information around Feb. 7 that included the names, ID numbers, and bank account and routing numbers of district employees, according to a breach notice published by the district on Tuesday.

“This was a targeted attack,” Dusty Kornegay, the K-12 district’s public relations officer, told EdScoop.

The district’s investigation has revealed the hackers sought to infiltrate the district’s banking system to transfer money from the district’s payroll accounts to their own accounts, but the district’s security protocols put a stop to the activity before any money was transferred.

Kornegay said the school district requires a second form of authentication before funds can be transferred, so when the district’s bank received a suspicious, automated clearing house transfer request, it checked with the school system before processing the request. As a result, no funds were lost, he said.

According to the district’s breach notification, shortly after learning of the intrusion, BlueVoyant, a global cybersecurity defense firm, was hired to investigate the attack and implement software to prevent future incidents.

The Thomas County School System holds a cybersecurity insurance policy, which is helping to cover forensic and legal costs, Kornegay said.

School employees were notified of the attack on Monday and urged to monitor their bank accounts for potential fraudulent activity.

The scope of the incident is still being investigated, but the district says no Social Security numbers or passwords to employee accounts were accessed by the hackers.

The district states in its breach notification that it is committed to enhancing its overall security architecture and that “protecting the security of our employees’ personal information is a top priority.”

Hacked Georgia school district thwarts attempt to steal payroll funds

More Like This

Law professor sues Georgetown University after sensitive data leak

Malicious QR code cyberattacks target education sector, Microsoft report shows

Rising cybersecurity threats target U.S. higher education institutions

Top Stories

Neuromorphic computing hub at University of Texas at San Antonio to be largest in U.S.

More Scoops

Students steal district data to gain edge in ‘Senior Water Games’

Wolcott, Conn., school district hit by second ransomware attack

Phishing scam exposes personal, medical information at central California school districts

Hacker steals personal data of 500,000 San Diego Unified students

Cyberthreats against schools grow as attackers look for ransom money, threaten students

A security breach is coming to your school. Are you ready?

Tech chief Scott Smith uses new role to keep innovating in North Carolina district

Latest Podcasts

CIO Matt Gunkel on how gen AI is transforming UC Riverside

Finding the right place for generative AI in the classroom

New REN-ISAC director wants to build ‘trust community’

New classroom designs ‘the future of learning,’

Higher Education

K-12

Cybersecurity

Hybrid Learning