Ontario school board trying to recover from cyber incident

Share post:

An Ontario public school board continues trying to recover from what it calls a cyber incident.

The Durham District School Board, which serves 75,000 students and approximately 14,000 staff across the Region of Durham east of Toronto, said in a website statement Monday afternoon that it is still working with external consultants to help determine the scope and extent of the attack.

The biggest city in Durham is Oshawa, with a population, including suburbs, of about 406,000.

In-school classes were open Monday and will be open again on Tuesday. However, online classes through the DDSB@Home service are still unavailable. Nor will a previously scheduled literacy test be held.

Telephone and email service are still offline. If a parent needs to get in touch with a child at school, they have to go to the school site. Restoration of phones at schools is a priority. Schools will use cell phones to contact parents in the event there is an emergency and  if emergency contact information has been provided to the school.

The Monday statement says also said the board is working to ensure payroll is not interrupted for staff.

The incident was discovered November 25th. Since then, the IT services team has been focusing on restoring critical systems to support school and business operations.

The board was asked in an email by ITWorldCanada to explain the cause of the incident, but it referred to the online statement, which doesn’t explain what is behind the attack or whether digital data was stolen.

In an online FAQ, the school board said that after the incident was discovered, the IT network was shut down. In a section that asked if data was compromised, the text of the FAQ answered, “We are continuing to investigate and are working to understand the full impact of this incident. We ask for your patience as this investigation is complex and will take time to complete. We are committed to sharing more information on this topic, including if there are any privacy impacts.”

The one student safety protocol not in place yet is the safe arrival program. Attendance will continue to be manually taken and parents/guardians will not be notified should their child be absent.

The attack comes weeks after the public release of the report of a provincial expert panel on cybersecurity in Ontario’s broader public sector (BPS), which includes school boards.

A key recommendation is the creation by the province of a single body to oversee cybersecurity across the entire broader public service, dispensing advice and demanding accountability. It would augment current governance structures responsible for sector-specific cyber security risks.

Another recommendation is that the province investigate establishing a self-funded cyber insurance program to support the delivery of services such as breach coaching, incident response, and recovery for BPS organizations.

Ontario Service Delivery Minister Kaleed Rasheed said his department has accepted recommendations in the expert committee’s final report. However, no timeline for implementing the recommendations was given. “Work is underway to assess and implement measures that will improve and strengthen the province’s cyber security ecosystem,” the government said in a statement.

The post Ontario school board trying to recover from cyber incident first appeared on IT World Canada.

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.

Featured Tech Jobs



Related articles

Gartner debunks myths undermining cybersecurity success

Henrique Teixeira, Senior Director Analyst at Gartner, and Leigh McMullen, Distinguished VP Analyst at Gartner, highlighted and disproved...

Toyota discloses customer data breach

Toyota has disclosed that customer information from Japan and other countries in Asia and Oceania was publicly available...

Critical Vulnerability found in MOVEit

Progress Software has warned about a critical vulnerability in its popular file-transfer software, MOVEit, which could allow malicious...

Canadian Defence Minister concerned over increasing cyberattacks

Canadian Defence Minister Anita Anand has issued a warning that the country's key infrastructure is more vulnerable to...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways