The ransomware claim by threat actor incransom targeted the Commission scolaire des Appalaches in Canada, encrypting approximately 70% of the archive which contains critical personal, financial, and legal data of students and staff, with the remaining data comprising educational and administrative files. Overall, the attack has significantly compromised sensitive information across multiple severity levels in Canada. #Canada
Incident Details
- Victim: Commission scolaire des Appalaches
- Country: CA
- Actor: incransom
- Source: http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/68b8543e115cdd92917fc683
- Discovered: 2025-09-03 15:19:29.012647
- Published: 2025-09-02 03:16:00.000000
Information
- Most of the archive (approximately 70%) contains critical or high-level information, including personal data of students and employees, financial documents, legal documents, and signatures.
- The medium level (approximately 20%) mainly consists of educational documents and administrative notes.
- The low level (approximately 5%) comprises auxiliary files.
Disclaimer: This post is based on public claims made by the ransomware group "incransom". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.