{
	"id": "05063c74-5309-4bbc-ae05-242a312dd0bd",
	"created_at": "2026-04-06T00:22:22.429438Z",
	"updated_at": "2026-04-10T03:20:07.088114Z",
	"deleted_at": null,
	"sha1_hash": "a540e048dcc930e770bea0bf7b367add503e7f22",
	"title": "Fairfax County schools hit by Maze ransomware, student data leaked",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 1709006,
	"plain_text": "Fairfax County schools hit by Maze ransomware, student data leaked\r\nBy Sergiu Gatlan\r\nPublished: 2020-09-12 · Archived: 2026-04-05 18:13:32 UTC\r\nImage: Rubén Rodriguez\r\nFairfax County Public Schools (FCPS), the 10th largest school division in the US, was recently hit by ransomware according\r\nto an official statement published on Friday evening.\r\nThe school district is also the largest in  the Baltimore-Washington Metropolitan Area and it has a budget of $3.1 billion\r\napproved for 2021.\r\nhttps://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/\r\nPage 1 of 4\n\n0:00\r\nhttps://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/\r\nPage 2 of 4\n\nVisit Advertiser websiteGO TO PAGE\r\nFCPS has over 188,000 current students and approximately 25,000 full-time employees working in 198 schools and centers\r\nwithin the U.S. commonwealth of Virginia.\r\nFBI involved in the ongoing investigation\r\nAt the moment the exact date when the ransomware impacted FCPS's network is not yet known but the school district says\r\nthat it collaborating with the FBI to determine what ransomware gang is behind the attack.\r\n\"FCPS recently learned that ransomware was placed on some of our technology systems. We are taking this matter very\r\nseriously and are working diligently to address the issue,\" the statement reads.\r\n\"We currently believe we may have been victimized by cyber criminals who have been connected to dozens of ransomware\r\nattacks in other school systems and corporations worldwide.\"\r\nFCPS has also retained the services of external security experts to help with the ongoing investigation, as well as to get the\r\naffected systems back online and  determine the full scope of the attack.\r\n\"FCPS is committed to protecting the information of our students, our staff, and their families,\" the school division added.\r\n\"We will work with law enforcement to the fullest extent to prosecute any individuals or groups that attack our systems.\"\r\nBleepingComputer has reached out to FCPS for additional details on the attack but had not heard back at the time of this\r\npublication.\r\nAttack claimed by the Maze ransomware gang\r\nFCPS did not reveal the identity of the ransomware operators who encrypted their systems but it said says that they are\r\nknown for dozens of attacks on other school districts and enterprises.\r\nHowever, the attack on FCPS was already claimed by the Maze ransomware operators who have already leaked 2% (an\r\narchive of roughly 100MB) of what they claim to be data stolen from the Virginia school division's servers.\r\nThe data leaked by Maze contains information on some of the school district's students, as well as administrative documents\r\nand what looks like an LSASS dump that can be used to extract Windows credentials.\r\nSome of the data leaked by Maze\r\nMaze ransomware is the one behind the new ransomware tactic of stealing victims' files before encrypting systems and using\r\nthem as leverage to pressure the victims into paying the ransoms.\r\nMaze attacks were first spotted in May 2019 and, since then, its operators have escalated their attacks via exploit kits, spam,\r\nand network breaches.\r\nIn November 2019, Maze was the first to publish a victim's stolen data, in that case, files stolen from Allied Universal, for\r\nnot paying the ransom.\r\nhttps://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/\r\nPage 3 of 4\n\nAfterward, they started publishing the data for their victims via posts on hacker forums and, eventually, through their\r\nown dedicated leak site. \r\nMaze are known to be behind behind numerous high profile attacks including ones against cyber insurer Chubb, Canon,\r\nbusiness giant Xerox, LG Electronics, Conduent, IT services giant Cognizant, system-on-chip (SOC) maker MaxLinear,\r\nthe City of Pensacola, and Banco BCR, \r\nAutomated Pentesting Covers Only 1 of 6 Surfaces.\r\nAutomated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the\r\nother.\r\nThis whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic\r\nquestions for any tool evaluation.\r\nSource: https://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/\r\nhttps://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://www.bleepingcomputer.com/news/security/fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked/"
	],
	"report_names": [
		"fairfax-county-schools-hit-by-maze-ransomware-student-data-leaked"
	],
	"threat_actors": [],
	"ts_created_at": 1775434942,
	"ts_updated_at": 1775791207,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/a540e048dcc930e770bea0bf7b367add503e7f22.pdf",
		"text": "https://archive.orkl.eu/a540e048dcc930e770bea0bf7b367add503e7f22.txt",
		"img": "https://archive.orkl.eu/a540e048dcc930e770bea0bf7b367add503e7f22.jpg"
	}
}